CVE-2026-33524

Name of the Vulnerable Software and Affected Versions Zserio versions prior to 2.18.1

Description Zserio is a framework for serializing structured data with a compact and efficient way with low overhead. A crafted payload as small as 4-5 bytes can force memory allocations of up to 16 GB, leading to an Out of Memory (OOM) error and causing a Denial of Service by crashing the process.

Recommendations Update to version 2.18.1.