CVE-2026-45137 | solana-foundation anchor up to 1.0.1 CPI Call Pubkey::default comparison (GHSA-c6rc-8jpp-2fgc)

Inserito da Angelo Barbosa | Mag 28, 2026 | CVE

A vulnerability identified as critical has been detected in solana-foundation anchor up to 1.0.1. This issue affects the function Pubkey::default of the component CPI Call Handler. The manipulation leads to incorrect comparison.

This vulnerability is uniquely identified as CVE-2026-45137. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-45137 | solana-foundation anchor up to 1.0.1 CPI Call Pubkey::default comparison (GHSA-c6rc-8jpp-2fgc)

Post correlati

CVE-2024-33595 | Jewel Theme Master Addons for Elementor Plugin up to 2.0.5.4.1 on WordPress authorization

CVE-2024-29130 | Scott Paterson Contact Form 7 Plugin up to 2.0 on WordPress cross site scripting

CVE-2024-13793 | Wolmart Plugin up to 1.8.11 on WordPress Shortcode wolmart_loadmore Remote Code Execution

CVE-2025-27399 | Mastodon up to 4.1.22/4.2.15/4.3.3 information disclosure (GHSA-94h4-fj37-c825)