CVE-2026-24819 An out-of-memory (OOM) issue in foxinmy/weixin4j

🗓️ 27 Jan 2026 08:55:54Reported by GovTech CSGType

CVE-2026-24819: Out of memory in weixin4j due to uncontrolled sequential memory allocation in CharArrayBuffer and ClassUtil.

Reporter	Title	Published	Views	Family All 16
ATTACKERKB	CVE-2026-24819	27 Jan 202608:55	–	attackerkb
Circl	CVE-2026-24819	27 Jan 202610:03	–	circl
CNNVD	weixin4j security vulnerabilities	27 Jan 202600:00	–	cnnvd
CVE	CVE-2026-24819	27 Jan 202608:55	–	cve
EUVD	EUVD-2026-20446	8 Apr 202612:31	–	euvd
EUVD	EUVD-2026-4799	27 Jan 202608:55	–	euvd
Github Security Blog	weixin4j has Improperly Controlled Sequential Memory Allocation	27 Jan 202609:30	–	github
NVD	CVE-2026-24819	27 Jan 202609:15	–	nvd
OSV	CVE-2026-24819	27 Jan 202609:15	–	osv
OSV	GHSA-444M-PX7R-QPVV weixin4j has Improperly Controlled Sequential Memory Allocation	27 Jan 202609:30	–	osv

[
  {
    "collectionURL": "https://github.com/foxinmy/weixin4j",
    "defaultStatus": "affected",
    "modules": [
      "weixin4j-base/src/main/java/com/foxinmy/weixin4j/util"
    ],
    "product": "weixin4j",
    "programFiles": [
      "CharArrayBuffer.java",
      "ClassUtil.java"
    ],
    "vendor": "foxinmy",
    "versions": [
      {
        "status": "unknown",
        "version": "0",
        "versionType": "git"
      }
    ]
  }
]

Source	Link
github	www.github.com/foxinmy/weixin4j/pull/229

27 Jan 2026 08:55Current

CVSS 46.3

EPSS0.00432

CWE-1325