CVE-2026-56789

MEDIUM 6.5

RTKLIB 2.4.3 - Heap Buffer Overflow and Stack Read via Oversized RINEX Epoch Satellite Count

CVSS Score

6.5

EPSS Score

0.0%

EPSS Percentile

0th

RTKLIB through 2.4.3 contains a heap buffer overflow vulnerability in the readrnxobsb function in src/rinex.c that allows attackers to trigger memory corruption by failing to clamp satellite count values from RINEX epoch headers. Attackers can craft malicious RINEX files declaring more than 64 satellites per epoch to cause heap buffer overflow writes and out-of-bounds stack reads, crashing RTKLIB-based applications including rnx2rtkp and RTKPOST.

CWE	CWE-122
Vendor	tomojitakasu
Product	rtklib
Published	Jun 25, 2026
Last Updated	Jun 25, 2026

Stay Ahead of the Next One

Get instant alerts for tomojitakasu rtklib

Be the first to know when new medium vulnerabilities affecting tomojitakasu rtklib are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

tomojitakasu / RTKLIB

0 ≤ 2.4.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/tomojitakasu/RTKLIB/issues/796 vulncheck.com: https://www.vulncheck.com/advisories/rtklib-heap-buffer-overflow-and-stack-read-via-oversized-rinex-epoch-satellite-count

Credits

FuzzingLabs