CVE-2026-44059

Published: Mag 21, 2026 Last Modified: Mag 21, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 4,5

Source: 33c584b5-0579-4c06-b2a0-8d8329fcab9c

Attack Vector: local

Attack Complexity: high

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: low

Integrity: low

Availability: low

Description

AI Translation Available

A race condition in the privilege toggle mechanism in Netatalk 2.2.5 through 4.4.2 allows a local attacker to obtain limited information, modify limited data, or cause a minor service disruption.

362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Draft

Abstraction: Class Structure: Simple

Common Consequences

Security Scopes Affected:

Availability Confidentiality Integrity Access Control

Potential Impacts:

Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Dos: Resource Consumption (Other) Dos: Crash, Exit, Or Restart Dos: Instability Read Files Or Directories Read Application Data Execute Unauthorized Code Or Commands Gain Privileges Or Assume Identity Bypass Protection Mechanism

Applicable Platforms

Languages: C, C++, Java

Technologies: Mobile, ICS/OT

Likelihood of Exploit: Medium

View CWE Details

https://netatalk.io/security/CVE-2026-44059

CVE-2026-44059

Description

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Common Consequences

Applicable Platforms

Iscriviti alla newsletter