CVE-2026-24881

HIGH SEVERITY

CVSS Score & Metrics

Base Score

8.1 / 10

Vector String

                                        CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H                                    

Vulnerability Description

In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized wrapped session key can cause a stack-based buffer overflow in gpg-agent during PKDECRYPT--kem=CMS handling. This can easily be leveraged for denial of service; however, there is also memory corruption that could lead to remote code execution.

Vulnerability Details

Published Date

January 27, 2026

Last Modified

January 29, 2026

CWE ID

CWE-121

Source

NVD

Vendor

GnuPG

Product

GnuPG

External References

https://dev.gnupg.org/T8044
https://www.openwall.com/lists/oss-security/2026/01/27/8

CVE-2026-24881

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment