CVE-2026-38753
The CVE describes a use-after-free in Busybox v1.38.0 affecting the awk_sub() routine in editors/awk.c, enabling a crafted AWK script to trigger a Denial of Service. The available connected sources confirm the vulnerable function and file path, and identify Busybox v1.38.0 as affected. No explici...