CVE-2026-39824
ADVISORY - debianSummary
NewNTUnicodeString does not check for string length overflow. When provided with a string that overflows the maximum size of a NTUnicodeString (a 16-bit number of bytes), it returns a truncated string rather than an error.
- golang-golang-x-sys (Only affects golang.org/x/sys on Windows) https://groups.google.com/g/golang-announce/c/6MMI8Lj-Atg https://github.com/golang/go/issues/78916
EPSS Score: 0.00018 (0.049)
Common Weakness Enumeration (CWE)
Debian
CREATED
UPDATED
ADVISORY IDCVE-2026-39824
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
N/AlowGoLang
CREATED
UPDATED
ADVISORY IDGO-2026-5024
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-