High severity7.5NVD Advisory· Published May 21, 2026· Updated May 21, 2026
CVE-2026-44062
CVE-2026-44062
Description
A missing output length bounds check in pull_charset_flags() in Netatalk 2.0.4 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code or cause a denial of service via crafted character set data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
1- Netatalk: 25 CVEs Disclosed in Single-Day Security Audit DumpVypr Intelligence · May 21, 2026