COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-40469

CVE-2026-40469

Severity
critical
Source
NVD · cve
Published
2026-07-13
CVSS
9.1
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-40469
shame 35/100

Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub() routine). This issue could be used to overwrite gawk heap metadata and objects causing the program to crash. It affects 32-bit builds of gawk in versions 5.4.0 and below.

Players implicated

fossies · vendorgawk · product

Description

Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub() routine). This issue could be used to overwrite gawk heap metadata and objects causing the program to crash. It affects 32-bit builds of gawk in versions 5.4.0 and below.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.