Security Advisory

CVE-2026-0849

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-14 21:05:36

Last updated 2026-03-17 15:05:37

Assigner zephyr

State PUBLISHED

Description

Malformed ATAES132A responses with an oversized length field overflow a 52-byte stack buffer in the Zephyr crypto driver, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution.

← Browse all CVEs View on cve.org ↗