VYPR
High severity8.1NVD Advisory· Published Feb 26, 2026· Updated Apr 15, 2026

CVE-2026-23750

CVE-2026-23750

Description

Golioth Pouch version 0.1.0, prior to commit 1b2219a1, contains a heap-based buffer overflow in BLE GATT server certificate handling. server_cert_write() allocates a heap buffer of size CONFIG_POUCH_SERVER_CERT_MAX_LEN when receiving the first fragment, then appends subsequent fragments using memcpy() without verifying that sufficient capacity remains. An adjacent BLE client can send unauthenticated fragments whose combined size exceeds the allocated buffer, causing a heap overflow and crash; integrity impact is also possible due to memory corruption.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Golioth/Pouchreferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=0.1.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.