CVE-2026-2394 | THREATINT

Description

Buffer Over-read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.1, from 6.1.0 before 6.1.*, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*, from 4.3x before 5.2.*.

PUBLISHED Reserved 2026-02-12 | Published 2026-04-01 | Updated 2026-04-01 | Assigner RTI

MEDIUM: 6.3CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Security Extensions Enabled

Problem types

CWE-126 Buffer Over-read

Product status

Default status

unaffected

7.4.0 (custom) before 7.7.0

affected

7.0.0 (custom) before 7.3.1.1

affected

6.1.0 (custom) before 6.1.*

affected

6.0.0 (custom) before 6.0.*

affected

5.3.0 (custom) before 5.3.*

affected

4.3x (custom) before 5.2.*

affected

References

www.rti.com/vulnerabilities/

cve.org (CVE-2026-2394)

nvd.nist.gov (CVE-2026-2394)

Download JSON