CVE-2026-24819

🗓️ 27 Jan 2026 08:55:54Reported by GovTech CSGType

Out-of-memory in foxinmy weixin4j from sequential memory allocation in CharArrayBuffer and ClassUtil.

Reporter	Title	Published	Views	Family All 15
ATTACKERKB	CVE-2026-24819	27 Jan 202608:55	–	attackerkb
Circl	CVE-2026-24819	27 Jan 202610:03	–	circl
CNNVD	weixin4j security vulnerabilities	27 Jan 202600:00	–	cnnvd
Cvelist	CVE-2026-24819 An out-of-memory (OOM) issue in foxinmy/weixin4j	27 Jan 202608:55	–	cvelist
EUVD	EUVD-2026-20446	8 Apr 202612:31	–	euvd
EUVD	EUVD-2026-4799	27 Jan 202608:55	–	euvd
Github Security Blog	weixin4j has Improperly Controlled Sequential Memory Allocation	27 Jan 202609:30	–	github
NVD	CVE-2026-24819	27 Jan 202609:15	–	nvd
OSV	GHSA-444M-PX7R-QPVV weixin4j has Improperly Controlled Sequential Memory Allocation	27 Jan 202609:30	–	osv
Positive Technologies	PT-2026-4894	27 Jan 202600:00	–	ptsecurity

[
  {
    "collectionURL": "https://github.com/foxinmy/weixin4j",
    "defaultStatus": "affected",
    "modules": [
      "weixin4j-base/src/main/java/com/foxinmy/weixin4j/util"
    ],
    "product": "weixin4j",
    "programFiles": [
      "CharArrayBuffer.java",
      "ClassUtil.java"
    ],
    "vendor": "foxinmy",
    "versions": [
      {
        "status": "unknown",
        "version": "0",
        "versionType": "git"
      }
    ]
  }
]

Source	Link
github	www.github.com/foxinmy/weixin4j/pull/229

15 Apr 2026 00:35Current

5.9Medium risk

Vulners AI Score5.9

CVSS 46.3

EPSS0.00024

SSVC

CWE-1325