{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-26738", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-01T15:49:05.940Z", "dateReserved": "2026-02-16T00:00:00.000Z", "datePublished": "2026-03-10T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T15:49:05.940Z"}, "descriptions": [{"lang": "en", "value": "Buffer Overflow vulnerability in Uderzo Software SpaceSniffer v.2.0.5.18 allows a remote attacker to execute arbitrary code via a crafted .sns snapshot file."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.gruppotim.it/it/footer/red-team.html"}, {"url": "https://www.gruppotim.it/it/footer/red-team/2026/CVE-2026-26738-UderzoSoftware.html"}, {"url": "https://www.gruppotim.it/it/footer/red-team/2026/CVE-2026-26738-Uderzo-Software1.html"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-121", "lang": "en", "description": "CWE-121 Stack-based Buffer Overflow"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-10T18:24:35.590772Z", "id": "CVE-2026-26738", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-10T18:25:12.918Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-26738", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-10T18:24:35.590772Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-121", "description": "CWE-121 Stack-based Buffer Overflow"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-10T18:22:50.390Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://www.gruppotim.it/it/footer/red-team.html"}, {"url": "https://www.gruppotim.it/it/footer/red-team/2026/CVE-2026-26738-UderzoSoftware.html"}], "descriptions": [{"lang": "en", "value": "Buffer Overflow vulnerability in Uderzo Software SpaceSniffer v.2.0.5.18 allows a remote attacker to execute arbitrary code via a crafted .sns snapshot file."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-10T15:40:45.810Z"}}}, "cveMetadata": {"cveId": "CVE-2026-26738", "state": "PUBLISHED", "dateUpdated": "2026-03-10T18:25:12.918Z", "dateReserved": "2026-02-16T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-10T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:uderzo:spacesniffer:2.0.5.18:*:*:*:*:*:*:*", "matchCriteriaId": "7BBA9A34-3433-46E7-B2F7-4695E63CDE8F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer Overflow vulnerability in Uderzo Software SpaceSniffer v.2.0.5.18 allows a remote attacker to execute arbitrary code via a crafted .sns snapshot file."}, {"lang": "es", "value": "Vulnerabilidad de desbordamiento de b\u00fafer en Uderzo Software SpaceSniffer v.2.0.5.18 permite a un atacante remoto ejecutar c\u00f3digo arbitrario a trav\u00e9s de un archivo de instant\u00e1nea .sns manipulado."}], "id": "CVE-2026-26738", "lastModified": "2026-05-21T17:13:18.027", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-10T18:18:43.800", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://www.gruppotim.it/it/footer/red-team.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://www.gruppotim.it/it/footer/red-team/2026/CVE-2026-26738-Uderzo-Software1.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "https://www.gruppotim.it/it/footer/red-team/2026/CVE-2026-26738-UderzoSoftware.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-121"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[2.0.5.18,2.0.5.18]"}}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "spacesniffer", "vendor": "uderzo_software"}], "analysis": {"en": {"generated_at": "2026-04-16T03:57:14.272454+00:00", "value": {"mitigation_remediation": ["Apply the vendor\u2011released patch or upgrade SpaceSniffer to a fixed version that addresses the buffer overflow.", "If a patch is unavailable, limit the ability to open .sns files by removing the application from untrusted machines or restricting file permissions so only trusted personnel can create or open snapshots.", "As a temporary safeguard, configure endpoint protection to detect and block malicious .sns files or set the application to run in a protected environment such as a sandbox."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Vulnerable hosts run Uderzo Software SpaceSniffer version 2.0.5.18. No other versions were reported in the advisory, and the CNA does not list additional affected releases.", "description_and_impact": "Uderzo Software SpaceSniffer v2.0.5.18 contains a stack\u2011based buffer overflow that an attacker can trigger by supplying a maliciously crafted .sns snapshot file. The flaw allows the attacker to execute arbitrary code on the victim\u2019s system, compromising confidentiality, integrity and availability of the affected machine.", "risk_and_exploitability": "The CVSS score of 7.8 indicates high severity. The EPSS score is below 1\u202f%, and the vulnerability is not currently listed in the CISA KEV catalog, implying that exploitation is low\u2011probability at present. The likely attack vector involves delivering a crafted .sns file to a host that has SpaceSniffer installed; this inference is based on the description that the overflow is triggered when the application processes a snapshot file. The description does not explicitly state that a user must open the file, but it is implied that the file must be processed by the application."}}}}, "created": "2026-03-11T11:51:02.635814+00:00", "updated": "2026-04-16T04:00:09.459952+00:00", "vendors": ["uderzo_software", "uderzo_software$PRODUCT$spacesniffer"]}