CVE-2026-9150EPSS p26.7%

CVE-2026-9150CVE-2026-9150

opensuse / libsolv

Description

A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could exploit this by providing malicious SHA384 or SHA512 checksum tags, leading to memory corruption and a denial of service (DoS) in the affected system.

Scoring

CVSS 6.5 ()
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS0.35% probability of exploitation · percentile 26.7% · 2026-06-18T12:00:27Z
Last modified2026-06-02

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-9149
CVE
CVE-2026-5121
CVE
CVE-2025-14512
CVE
CVE-2026-1489
CVE
CVE-2026-24660
CVE
CVE-2026-20911
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.