Home

Description

NULL Pointer Dereference vulnerability in taurusxin ncmdump (‎src/utils‎ modules). This vulnerability is associated with program files cJSON.Cpp‎. This issue affects ncmdump: before 1.4.0.

PUBLISHED Reserved 2026-03-24 | Published 2026-03-24 | Updated 2026-03-24 | Assigner GovTech CSG




MEDIUM: 5.2CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/S:N/AU:N/R:U/V:D/RE:L/U:Green

Problem types

CWE-476 NULL Pointer Dereference

Product status

Default status
affected

Any version before 1.4.0
affected

Credits

TITAN Team (titancaproject@gmail.com) reporter

References

github.com/taurusxin/ncmdump/pull/52 patch

cve.org (CVE-2026-4743)

nvd.nist.gov (CVE-2026-4743)

Download JSON