CVE-2026-2394

MEDIUM

Buffer Over-read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.

Title source: cna

Description

Buffer Over-read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.1.1, from 6.1.0 before 6.1.*, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*, from 4.3x before 5.2.*.

References (1)

https://www.rti.com/vulnerabilities/#cve-2026-2394

Scores

CVSS v3 6.5

EPSS 0.0003

EPSS Percentile 9.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Details

CWE

CWE-125 CWE-126

Status published

Products (7)

RTI/Connext Professional 4.3x - 5.2.*

RTI/Connext Professional 5.3.0 - 5.3.*

RTI/Connext Professional 6.0.0 - 6.0.*

RTI/Connext Professional 6.1.0 - 6.1.*

RTI/Connext Professional 7.0.0 - 7.3.1.1

RTI/Connext Professional 7.4.0 - 7.7.0

rti/connext_professional 4.3.0 - 5.2.3

Published Apr 01, 2026

Tracked Since Apr 01, 2026