What is CVE-2026-45615?

CVE-2026-45615 is a high-severity vulnerability in Mouse07410 Asn1c, classified under Improper Input Validation. CVSS score: 8.2/10. Published 2026-05-29.

How severe is CVE-2026-45615?

High severity. CVSS v3 base score is 8.2 out of 10.

Out-of-bounds Read in Mouse07410 Asn1c

CVE-2026-45615

mouse07410/asn1c is an ASN.1 compiler. In 1.4 and earlier, a memory safety vulnerability was identified in the OER decoding skeleton files generated by asn1c (specifically INTEGER_oer.c). When parsing a maliciously crafted, zero-length OER…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.001 (21.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H.

Affected products

Mouse07410 Asn1c — versions <= 1.4

Weakness classification (CWE)

CWE-20 — Improper Input Validation
CWE-125 — Out-of-bounds Read
CWE-130 — Improper Handling of Length Parameter Inconsistency

References

security-advisories@github.com (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2026-45615?: CVE-2026-45615 is a high-severity vulnerability in Mouse07410 Asn1c, classified under Improper Input Validation. CVSS score: 8.2/10. Published 2026-05-29.
How severe is CVE-2026-45615?: High severity. CVSS v3 base score is 8.2 out of 10.