Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

JLSEC-2026-58

🗓️ 06 Apr 2026 14:29:38Reported by GoogleType 
osv
 osv🔗 osv.dev

Integer overflow in UnicodeString::doAppend() in the Unicode library for c plus plus up to 66.1 causes a heap buffer overflow.

Related
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: ICU Vulnerability Affects IBM Control Center (CVE-2020-10531)
16 Jun 202119:41
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities affect IBM® SDK for Node.js™ in IBM Cloud
15 Jun 202022:03
ibm
IBM Security Bulletins		Security Bulletin: IBM Data Risk Manager is affected by multiple vulnerabilities
13 Aug 202122:15
ibm
IBM Security Bulletins		Security Bulletin: IBM Cloud Transformation Advisor is affected by multiple Node.js vulnerabilities.
15 Sep 202016:30
ibm
IBM Security Bulletins		Security Bulletin: Multiple Vulnerabilities Affected for EDB
21 Jul 202513:52
ibm
IBM Security Bulletins		Security Bulletin: Multiple vulnerabilities in ICU libraries used in IBM DataPower Gateway
10 Sep 202114:15
ibm
IBM Security Bulletins		Security Bulletin: Netcool Operations Insight - Cloud Native Event Analytics is affected by a International Components for Unicode (ICU) for C/C++ vulnerability (CVE-2020-10531)
13 Aug 202013:19
ibm
IBM Security Bulletins		Security Bulletin: Version 10.19.0 of Node.js included in IBM Netcool Operations Insight 1.6.0.x has several security vulnerabilities
7 Aug 202011:11
ibm
IBM Security Bulletins		Security Bulletin: Multiple security vulnerabilities in Node.js affect IBM App Connect Enterprise V11
29 Jul 202007:36
ibm
IBM Security Bulletins		Security Bulletin: IBM DataPower Gateway affected by vulnerabilities in ICU [CVE-2017-14952 and CVE-2020-10531]
18 Aug 202213:01
ibm
Rows per page
SourceLink
listswww.lists.opensuse.org/opensuse-security-announce/2020-04/msg00004.html
accesswww.access.redhat.com/errata/RHSA-2020:0738
bugswww.bugs.chromium.org/p/chromium/issues/detail
chromereleaseswww.chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop_24.html
chromiumwww.chromium.googlesource.com/chromium/deps/icu/+/9f4020916eb1f28f3666f018fdcbe6c9a37f0e08
githubwww.github.com/unicode-org/icu/commit/b7d08bc04a4296982fcef8b6b8a354a9e4e7afca
githubwww.github.com/unicode-org/icu/pull/971
listswww.lists.debian.org/debian-lts-announce/2020/03/msg00024.html
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4OOYAMJVLLCLXDTHW3V5UXNULZBBK4O6/
listswww.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IOHSO6BUKC6I66J5PZOMAGFVJ66ZS57/
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
06 Apr 2026 14:45Current
7High risk
Vulners AI Score7
CVSS 26.8
CVSS 3.18.8
EPSS0.0079
integer overflowheap overflowunicode string appendc plus plusunicode librarydo append
0