Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-65yu-seks-x7bz
Vulnerability ID VCID-65yu-seks-x7bz
Aliases CVE-2026-32952
GHSA-pjcq-xvwq-hhpj
Summary
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-190 Integer Overflow or Wraparound
System Score Found at
cvssv3 5.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32952.json
epss 0.00057 https://api.first.org/data/v1/epss?cve=CVE-2026-32952
epss 0.00057 https://api.first.org/data/v1/epss?cve=CVE-2026-32952
epss 0.00057 https://api.first.org/data/v1/epss?cve=CVE-2026-32952
epss 0.00068 https://api.first.org/data/v1/epss?cve=CVE-2026-32952
epss 0.00068 https://api.first.org/data/v1/epss?cve=CVE-2026-32952
cvssv3.1 5.3 https://github.com/Azure/go-ntlmssp
generic_textual MODERATE https://github.com/Azure/go-ntlmssp
cvssv3.1 5.3 https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1
generic_textual MODERATE https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1
ssvc Track https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1
cvssv3.1 5.3 https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
generic_textual MODERATE https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
ssvc Track https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
cvssv3.1 5.3 https://nvd.nist.gov/vuln/detail/CVE-2026-32952
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2026-32952
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32952.json
https://api.first.org/data/v1/epss?cve=CVE-2026-32952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32952
https://github.com/Azure/go-ntlmssp
https://nvd.nist.gov/vuln/detail/CVE-2026-32952
1135345 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1135345
2461375 https://bugzilla.redhat.com/show_bug.cgi?id=2461375
GHSA-pjcq-xvwq-hhpj https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
v0.1.1 https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1
No exploits are available.
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32952.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://github.com/Azure/go-ntlmssp
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T16:29:17Z/ Found at https://github.com/Azure/go-ntlmssp/releases/tag/v0.1.1
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-24T16:29:17Z/ Found at https://github.com/Azure/go-ntlmssp/security/advisories/GHSA-pjcq-xvwq-hhpj
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2026-32952
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.17825
EPSS Score 0.00057
Published At April 24, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-24T22:15:20.214657+00:00 EPSS Importer Import https://epss.cyentia.com/epss_scores-current.csv.gz 38.4.0