CVE-2026-27664

A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.10), SICORE Base system (All versions < V26.10.0). The affected application contains an out-of-bounds write vulnerability while parsing specially crafted XML inputs. This could allow an unauthenticated attacker to exploit this issue by sending a malicious XML request, which may cause the service to crash, resulting in a denial-of-service condition.
Configurations

No configuration.

History

14 Apr 2026, 19:16

Type Values Removed Values Added
References
  • () http://seclists.org/fulldisclosure/2026/Apr/7 -

30 Mar 2026, 13:26

Type Values Removed Values Added
Summary
  • (es) Se ha identificado una vulnerabilidad en CPCI85 Central Processing/Communication (Todas las versiones &lt; V26.10), sistema base SICORE (Todas las versiones &lt; V26.10.0). La aplicación afectada contiene una vulnerabilidad de escritura fuera de límites al analizar entradas XML especialmente manipuladas. Esto podría permitir a un atacante no autenticado explotar este problema enviando una solicitud XML maliciosa, lo que podría provocar la caída del servicio, resultando en una condición de denegación de servicio.

26 Mar 2026, 15:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-03-26 15:16

Updated : 2026-06-17 10:27


NVD link : CVE-2026-27664

Mitre link : CVE-2026-27664

CVE.ORG link : CVE-2026-27664


JSON object : View

Products Affected

No product.

CWE
CWE-787

Out-of-bounds Write