CVE-2026-46728

Published: Mag 17, 2026 Last Modified: Mag 18, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,2

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: high

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification bypass because hashed-nodes is omitted from a hash.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0000

Percentile

0,0th

Updated

EPSS Score Trend (Last 4 Days)

346

Origin Validation Error

Draft

Abstraction: Class Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control Other

Potential Impacts:

Gain Privileges Or Assume Identity Varies By Context

Applicable Platforms

Technologies: Not Technology-Specific, Web Based

View CWE Details

https://github.com/barebox/barebox/security/advisories/GHSA…

https://github.com/barebox/barebox/security/advisories/GHSA-3fvj-q26p-j6h4

https://github.com/u-boot/u-boot/commit/2092322b31cc8b1f8c9…

https://github.com/u-boot/u-boot/commit/2092322b31cc8b1f8c9e2e238d1043ae0637b241

CVE-2026-46728

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 4 Days)

Origin Validation Error

Common Consequences

Applicable Platforms

Iscriviti alla newsletter