LeakyCreds
NewInstant webhook alerts now available ā€” notified within seconds of any credential detection.Learn more ā†’
Home / Vulnerability Intelligence / CVE-2026-42483

CVE-2026-42483 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: May 1, 2026

hashcat - Buffer Overflow

Published: May 1, 2026Updated: May 1, 2026PoC AvailableRemote Exploitable

Overview

hashcat 7.1.2 contains a heap-based buffer overflow caused by improper upper-bound validation in Kerberos hash parser's module_hash_decode, letting attackers cause denial of service or execute arbitrary code via crafted Kerberos hash file, exploit requires crafted input file.

Severity & Score

Severity: Critical
CVSS Score: 9.8
EPSS Score: 7.9%(Probability of exploitation in next 30 days)

Impact

Attackers can cause denial of service or execute arbitrary code, potentially compromising the system.

Mitigation

Update to the latest version of hashcat.

References

Social Media Activity(3 posts)

Yazoul - Cybersecurity Alerts
Yazoul - Cybersecurity Alerts
@Matchbook3469
May 2, 2026

šŸšØ New security advisory: CVE-2026-42483 affects Hashcat Hashcat. ā€¢ Impact: Remote code execution or complete system compromise possible ā€¢ Risk: Attackers can gain full control of affected systems ā€¢ Mitigation: Patch immediately or isolate affected systems Full breakdown: https://www.yazoul.net/advisory/cve/cve-2026-42483-hashcat-heap-overflow-dos-or-rce #CVE #VulnerabilityManagement #CyberSec

View original post
TheHackerWire
TheHackerWire
@thehackerwire
May 2, 2026

šŸ”“ CVE-2026-42483 - Critical (9.8) A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The issue affects module_hash_decode in multiple Kerber... šŸ”— https://www.thehackerwire.com/vulnerability/CVE-2026-42483/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post
TheHackerWire
TheHackerWire
@thehackerwire
May 2, 2026

šŸ”“ CVE-2026-42483 - Critical (9.8) A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted Kerberos hash file. The issue affects module_hash_decode in multiple Kerber... šŸ”— https://www.thehackerwire.com/vulnerability/CVE-2026-42483/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID
CVE-2026-42483
Severity
Critical
CVSS Score
9.8
Type
buffer_overflow
Status
modified
EPSS
7.9%
Social Posts
3

CWE

  • CWE-787
  • CWE-122

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

7.9%Probability of exploitation in the next 30 days