CVE-2026-8276
LOWbettercap MySQL Server mysql_server.go integer coercion
Title source: cnaDescription
A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysql_server/mysql_server.go of the component MySQL Server. Executing a manipulation can lead to integer coercion error. The attack can be launched remotely. The attack requires a high level of complexity. The exploitation is known to be difficult. The exploit has been published and may be used. This patch is called 0eaa375c5e5446bfba94a290eff92967a5deac9e. It is advisable to implement a patch to correct this issue.
References (8)
Core 8
Core References
Vdb Entry vdb-entry
VDB-362573 | bettercap MySQL Server mysql_server.go integer coercion
https://vuldb.com/vuln/362573
Signature, Permissions Required signature
permissions-required
VDB-362573 | CTI Indicators (IOB, IOC, IOA)
https://vuldb.com/vuln/362573/cti
Third Party Advisory third-party-advisory
Submit #811163 | Bettercap <=v2.41.5 Integer Coercion Error
https://vuldb.com/submit/811163
Issue Tracking issue-tracking
https://github.com/bettercap/bettercap/issues/1265
Patch issue-tracking
patch
https://github.com/bettercap/bettercap/pull/1266
Exploit exploit
issue-tracking
https://github.com/bettercap/bettercap/issues/1265#issue-4287957382
Product product
https://github.com/bettercap/bettercap/
Scores
CVSS v3
3.7
EPSS
0.0039
EPSS Percentile
30.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-189
CWE-192
Status
published
Products (7)
None/bettercap
2.41.0
None/bettercap
2.41.1
None/bettercap
2.41.2
None/bettercap
2.41.3
None/bettercap
2.41.4
None/bettercap
2.41.5
bettercap/bettercap
0 - 2.41.7Go
Published
May 11, 2026
Tracked Since
May 11, 2026