Cyber Resilience

CVE-2026-43958

High

Published: 01 June 2026

Published
01 June 2026
Modified
02 June 2026
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0013 2.6th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-43958 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 2.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A flaw was found in rrdcached, a component of rrdtool. A local attacker with access to a rrdcached socket can exploit a stack-based buffer overflow by sending an oversized CREATE request. This vulnerability can lead to a denial of service…

more

by crashing the daemon or potentially allow for arbitrary code execution, impacting the integrity and confidentiality of data.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Local stack buffer overflow in rrdcached daemon directly enables exploitation for privilege escalation via arbitrary code execution (or DoS).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-70083Shared CWE-121
CVE-2026-44855Shared CWE-121
CVE-2024-10239Shared CWE-121
CVE-2026-45250Shared CWE-121
CVE-2026-21224Shared CWE-121
CVE-2020-36965Shared CWE-121
CVE-2026-8179Shared CWE-121
CVE-2026-32708Shared CWE-121
CVE-2026-44859Shared CWE-121
CVE-2026-23995Shared CWE-121

Affected Assets

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References