CVE-2026-1998 | micropython up to 1.27.0 py/runtime.c mp_import_all memory corruption (Issue 18639)

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability was found in micropython up to 1.27.0. It has been classified as critical. This vulnerability affects the function mp_import_all of the file py/runtime.c. This manipulation causes memory corruption.

This vulnerability is registered as CVE-2026-1998. The attack needs to be launched locally. Furthermore, an exploit is available.

It is suggested to install a patch to address this issue.

CVE-2026-1998 | micropython up to 1.27.0 py/runtime.c mp_import_all memory corruption (Issue 18639)

Post correlati

CVE-2024-23747 | Moderna Sistemas ModernaNet Hospital Management System 2024 Laudo id resource injection

CVE-2025-22151 | strawberry-graphql strawberry up to 0.256.x type confusion (GHSA-5xh2-23cc-5jc6)

CVE-2024-10876 | smub Charitable Plugin up to 1.8.3 on WordPress add_query_arg/remove_query_arg cross site scripting

CVE-2024-42480 | clastix kamaji prior 24.8.2 TCP API Server access control