CVE-2026-31966 | samtools htslib up to 1.21.0/1.22.1/1.23 cram_decode_seq out-of-bounds

Inserito da Angelo Barbosa | Mar 18, 2026 | CVE

A vulnerability described as problematic has been identified in samtools htslib up to 1.21.0/1.22.1/1.23. This issue affects the function cram_decode_seq. Such manipulation leads to out-of-bounds read.

This vulnerability is listed as CVE-2026-31966. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.

CVE-2026-31966 | samtools htslib up to 1.21.0/1.22.1/1.23 cram_decode_seq out-of-bounds

Post correlati

CVE-2024-8460 | D-Link DNS-320 2.02b01 Web Management Interface /cgi-bin/widget_api.cgi getHD/getSer/getSys information disclosure (SAP10383)

CVE-2025-55177 | Facebook WhatsApp Desktop for Mac Synchronization Message authorization

CVE-2025-15217 | Tenda AC23 16.03.07.52 HTTP POST Request formSetPPTPUserList list buffer overflow

CVE-2025-25791 | YZNCMS 2.0.1 Plugin Installation unrestricted upload