Low severity3.7NVD Advisory· Published Feb 26, 2026· Updated Apr 15, 2026

CVE-2026-23748

Description

Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit d7f55b38, contain an out-of-bounds read in LightDB State string parsing. When processing a string payload, a payload_size value less than 2 can cause a size_t underflow when computing the number of bytes to copy (nbytes). The subsequent memcpy() reads past the end of the network buffer, which can crash the device. The condition is reachable from on_payload, and golioth_payload_is_null() does not block payload_size==1. A malicious server or MITM can trigger a denial of service.

Affected products

Golioth/Golioth Firmware Sdkreferences

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blog.secmate.dev/posts/golioth-vulnerabilities-disclosure/nvd
github.com/golioth/golioth-firmware-sdk/commit/d7f55b380d8be8b29bd101ce06e421af2e88c12bnvd
github.com/golioth/golioth-firmware-sdk/releases/tag/v0.22.0nvd
secmate.dev/disclosures/SECMATE-2025-0016nvd
www.vulncheck.com/advisories/golioth-firmware-sdk-lightdb-state-out-of-bounds-readnvd

News mentions

No linked articles in our index yet.

cvss	0.240
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000