๐Ÿ” CVE Alert

CVE-2026-45612

MEDIUM 5.5

rz-libdemangle: Out of bound read in rust demangler

CVSS Score
5.5
EPSS Score
0.0%
EPSS Percentile
0th

rz-libdemangle is a Rizin library for demangling symbols. Prior to 6bf56d3, the Rust demangler in src/rust/rust_v0.c can perform an out-of-bounds read when the demangler structure is not yet initialized. This issue is fixed in commit 6bf56d3.

CWE CWE-125
Vendor rizinorg
Product rz-libdemangle
Published Jul 16, 2026
Last Updated Jul 16, 2026
Stay Ahead of the Next One

Get instant alerts for rizinorg rz-libdemangle

Be the first to know when new medium vulnerabilities affecting rizinorg rz-libdemangle are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Affected Versions

rizinorg / rz-libdemangle
< 6bf56d32b32547ae4cb069ccfc2d2b6c7b63a4cb

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/rizinorg/rz-libdemangle/security/advisories/GHSA-4p92-mfjf-qvrc github.com: https://github.com/rizinorg/rz-libdemangle/pull/83 github.com: https://github.com/rizinorg/rz-libdemangle/commit/6bf56d32b32547ae4cb069ccfc2d2b6c7b63a4cb