PT-2026-37338 · Velocidex · Velociraptor
Javier Perez
·
Published
2026-05-06
·
Updated
2026-06-01
·
CVE-2026-7572
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Velocidex Velociraptor versions prior to 0.76.5
Description
An off-by-one error in the
ConsumeUnit16Array() and ConsumeUnit64Array() functions allows a local attacker to cause a Denial of Service (DoS) via a process crash. This occurs when a specially crafted .evtx file is provided to the 'parse evtx' VQL plugin. An off-by-one error is a situation where a program iterates one time too many or too few, often leading to memory access violations.Recommendations
Update to version 0.76.5 or later.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Velociraptor