CVE-2026-24857

Name of the Vulnerable Software and Affected Versions bulk extractor versions 1.4 and later

Description bulk extractor is a digital forensics exploitation tool. The embedded unrar code within bulk extractor, starting with version 1.4, contains a heap-buffer-overflow in the RAR PPM LZ decoding path. A specially crafted RAR archive within a disk image can trigger an out-of-bounds write in the Unpack::CopyString function, resulting in a crash. This could potentially lead to remote code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.