EUVD-2026-31254

🗓️ 21 May 2026 09:08:00Reported by EUVDType

Malicious daemon may cause kernel heap disclosure via non NUL terminated FUSE_LISTXATTR list.

Reporter	Title	Published	Views	Family All 13
FreeBSD	FreeBSD -- Heap overflow in FUSE_LISTXATTR	20 May 202600:00	–	freebsd
ATTACKERKB	CVE-2026-45252	21 May 202609:08	–	attackerkb
Circl	CVE-2026-45252	21 May 202612:41	–	circl
CNNVD	FreeBSD 安全漏洞	21 May 202600:00	–	cnnvd
CVE	CVE-2026-45252	21 May 202609:08	–	cve
Cvelist	CVE-2026-45252 Heap overflow in FUSE_LISTXATTR	21 May 202609:08	–	cvelist
FreeBSD Advisory	FreeBSD-SA-26:20.fusefs	20 May 202600:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- Heap overflow in FUSE_LISTXATTR (3cc34467-54b6-11f1-8d7a-bc241121aa0a)	21 May 202600:00	–	nessus
NVD	CVE-2026-45252	21 May 202610:16	–	nvd
Packet Storm News	FreeBSD Security Advisory - FreeBSD-SA-26:20.fusefs	20 May 202600:00	–	packetstormnews

[
  {
    "enisaIdVendor": [
      {
        "id": "16e5f745-5387-38c5-a327-896cde5bb67b",
        "vendor": {
          "name": "FreeBSD"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "49dd4639-3aed-3e2b-85a0-5e84b08109ed",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "14.4-RELEASE <p5"
      },
      {
        "id": "86f98598-a801-3b37-a035-9028e1c2c825",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "14.3-RELEASE <p14"
      },
      {
        "id": "f3d7ee75-abc7-3786-bfbe-cced9f5899d8",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "15.0-RELEASE <p9"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-26:20.fusefs.asc

21 May 2026 13:47Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.5

EPSS0.00076

SSVC