PT-2026-43424 · Vanetza · Vanetza

Tw89Coder

·

Published

2026-05-26

·

Updated

2026-05-27

·

CVE-2026-43988

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Vanetza versions 26.02 and earlier
Description A denial-of-service issue exists in the ASN.1/OER parsing pipeline. When the system processes malformed network packets containing corrupted ASN.1/OER structures, such as invalid length fields or malformed certificate encoding, the ASN.1 wrapper asn1c wrapper.cpp raises a std::runtime error. Because this exception is not caught at the parsing boundary, it propagates to std::terminate(), causing the process to terminate.
Recommendations Update to the version containing commit 62dfe58a8342512b6e1947d75821402ada524f1a.

Exploit

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-43988
GHSA-J6CJ-RP87-MFRX

Affected Products

Vanetza