VYPR
High severity7.5NVD Advisory· Published Mar 10, 2026· Updated Apr 1, 2026

CVE-2026-26127

CVE-2026-26127

Description

Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
Microsoft.Bcl.MemoryNuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.linux-armNuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.linux-arm64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.linux-musl-armNuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.linux-musl-arm64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.linux-musl-x64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.linux-x64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.osx-arm64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.osx-x64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.win-armNuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.win-arm64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.win-x64NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.NetCore.App.Runtime.win-x86NuGet
>= 9.0.0, < 9.0.149.0.14
Microsoft.Bcl.MemoryNuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.linux-armNuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.linux-arm64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.linux-musl-armNuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.linux-musl-arm64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.linux-musl-x64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.linux-x64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.osx-arm64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.osx-x64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.win-armNuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.win-x64NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.win-x86NuGet
>= 10.0.0, < 10.0.410.0.4
Microsoft.NetCore.App.Runtime.win-arm64NuGet
>= 10.0.0, < 10.0.410.0.4

Affected products

48

Patches

Vulnerability mechanics

References

4

News mentions

2