CVE-2026-33040 | libp2p rust-libp2p up to 0.49.2 PRUNE u64::MAX integer overflow (GHSA-gc42-3jg7-rxr2)

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability was found in libp2p rust-libp2p up to 0.49.2. It has been declared as problematic. This affects the function u64::MAX of the component PRUNE Handler. Such manipulation leads to integer overflow.

This vulnerability is traded as CVE-2026-33040. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-33040 | libp2p rust-libp2p up to 0.49.2 PRUNE u64::MAX integer overflow (GHSA-gc42-3jg7-rxr2)

Post correlati

CVE-2024-41701 | AccuPOS information disclosure

CVE-2026-2894 | funadmin up to 7.1.0-rc4 forget.html getMember information disclosure

CVE-2024-24035 | Setor Informatica SIL 3.1 hmessage cross site scripting

CVE-2025-14655 | Tenda AC20 16.03.08.12 httpd SetSysAutoRebbotCfg formSetRebootTimer rebootTime stack-based overflow