CVE-2026-7572 — Denial of Service
CVE-2026-7572 — An off-by-one error (CWE-193) in the ConsumeUnit16Array and ConsumeUnit64Array functions in Velocidex Velociraptor before version 0.76.5 on Windows and Linux allows a local attacker to cause a Denial of Service (DoS) via a process crash by providing a specially crafted .evtx file to
What This Means For You
- If your environment is affected by CWE-193, review your exposure and prioritize patching based on your environment. Monitor vendor advisories for CVE-2026-7572 updates and patches.
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-7572 | vulnerability | CVE-2026-7572 |
| CWE-193 | weakness | CWE-193 |
Written by SCW Vulnerability Desk
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | May 06, 2026 at 06:15 UTC |
This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.
Believe this infringes your rights? Submit a takedown request.
Related coverage
CVE-2026-5753 — The All-in-One WP Migration Unlimited Extension plugin for
CVE-2026-5753 — The All-in-One WP Migration Unlimited Extension plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.83. This is...
CVE-2026-3208 — The Mercado Pago payments for WooCommerce plugin for
CVE-2026-3208 — The Mercado Pago payments for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on...
CVE-2026-7573 — An authorization bypass (CWE-639) in the GetUserRoles gRPC
CVE-2026-7573 — An authorization bypass (CWE-639) in the GetUserRoles gRPC API endpoint in Velocidex Velociraptor below version 0.76.5 allows any authenticated low-privilege user to retrieve...