CVE-2026-56788
Published: 25 June 2026
Summary
CVE-2026-56788 is a medium-severity Out-of-bounds Read (CWE-125) vulnerability in Rtklib Rtklib. Its CVSS base score is 4.8 (Medium).
Operationally, ranked at the 1.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-39530
Vulnerability details
RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when processing unrecognized RINEX observation codes, allowing attackers to trigger denial of service. Crafted RINEX files with unknown observation types cause negative array indexing into the codepris table, resulting…
more
in reliable crashes and potential memory disclosure of adjacent global data.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.