PT-2026-4862 · Zlib+1 · Zlib+1

Titan Team

Published

2026-01-27

Updated

2026-02-17

CVE-2026-24793

CVSS v4.0

Critical

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:N/AU:Y/R:U/V:C/RE:L/U:Red

Name of the Vulnerable Software and Affected Versions azerothcore-wotlk versions through 4.0.0

Description The software contains an out-of-bounds write issue, specifically a buffer copy without checking the size of the input, often referred to as a classic buffer overflow. This issue is present in the deps/zlib modules, specifically within the inflate.C program files. The issue could lead to remote code execution without user interaction.

Recommendations Versions prior to 4.0.1 are affected.

Exploit

Fix

RCE

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-120

Related Identifiers

AZL-75821

AZL-75836

CVE-2026-24793

Affected Products

Azerothcore-Wotlk

Zlib

PT-2026-4862 · Zlib+1 · Zlib+1

CVE-2026-24793

Weakness Enumeration

Related Identifiers

Affected Products

References · 9