CVE-2026-27014

Name of the Vulnerable Software and Affected Versions NanaZip versions 5.0.1252.0 through 6.0.1629.9

Description NanaZip, an open source file archive, is affected by an issue where circular NextOffset chains can cause an infinite loop, and deeply nested directories can lead to unbounded recursion, resulting in a stack overflow within the ROMFS archive parser.

Recommendations Update to version 6.0.1630.0 or later.