CVE-2026-7572

CVSS v3.1

4.4

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions Velocidex Velociraptor versions prior to 0.76.5

Description An off-by-one error in the ConsumeUnit16Array() and ConsumeUnit64Array() functions allows a local attacker to cause a Denial of Service (DoS) via a process crash. This occurs when a specially crafted .evtx file is provided to the 'parse evtx' VQL plugin. An off-by-one error is a situation where a program iterates one time too many or too few, often leading to memory access violations.

Recommendations Update to version 0.76.5 or later.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-193

Related Identifiers

CVE-2026-7572

Affected Products

Velociraptor

CVE-2026-7572

Weakness Enumeration

Related Identifiers

Affected Products

References · 5