VYPR
Low severity3.7NVD Advisory· Published May 21, 2026· Updated May 21, 2026

CVE-2026-44075

CVE-2026-44075

Description

A missing break statement in DSI OpenSession processing in Netatalk 1.5.0 through 4.4.2 causes a DSIOPT_ATTNQUANT switch case to fall through into DSIOPT_SERVQUANT, resulting in unintended session option handling that may allow a remote attacker to cause a minor service disruption via crafted DSI session options.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Netatalk/Netatalkinferred2 versions
    >=1.5.0,<=4.4.2+ 1 more
    • (no CPE)range: >=1.5.0,<=4.4.2
    • (no CPE)range: >=1.5.0, <=4.4.2

Patches

Vulnerability mechanics

References

1

News mentions

1