CVE-2026-44061

Published: Mag 21, 2026 Last Modified: Mag 21, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,9

Source: 33c584b5-0579-4c06-b2a0-8d8329fcab9c

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: none

Availability: none

Description

AI Translation Available

Netatalk 1.5.0 through 4.4.2 uses DES-ECB for authentication with a timing side channel, which allows a remote attacker to recover authentication credentials via timing analysis.

208

Observable Timing Discrepancy

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Access Control

Potential Impacts:

Read Application Data Bypass Protection Mechanism

Applicable Platforms

All platforms may be affected

View CWE Details

https://netatalk.io/security/CVE-2026-44061

CVE-2026-44061

Description

Observable Timing Discrepancy

Common Consequences

Applicable Platforms

Iscriviti alla newsletter