CVE-2026-44073

5.0 MEDIUM

Authentication modules in Netatalk 1.5.0 through 4.4.2 fail to check the return value of seteuid(), which may allow a remote authenticate...

Published: 2026-05-21 · Last updated: 2026-05-21

Severity and scoring

CVSS: 5.0 MEDIUM
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-273

Description

Authentication modules in Netatalk 1.5.0 through 4.4.2 fail to check the return value of seteuid(), which may allow a remote authenticated attacker to retain elevated privileges under error conditions.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-44073
[Other]https://netatalk.io/security/CVE-2026-44073

Related CVEs

Same CWE

CVE-2026-0099 — In onNullBinding of HostEmulationManager.java, there is a possible way to launch an activity from the background due to a logic error in ... (7.8 HIGH)