What is CVE-2026-4747?

CVE-2026-4747 is a vulnerability in Freebsd, classified under Stack-based Buffer Overflow. Published 2026-03-26.

Is CVE-2026-4747 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Freebsd

CVE-2026-4747

Each RPCSEC_GSS data packet is validated by a routine which checks a signature in the packet. This routine copies a portion of the packet into a stack buffer, but fails to ensure that the buffer is sufficiently large, and a malicious clie…

Vulnerability class: Buffer Overflow

EPSS: 0.002 (45.8th percentile) — read the EPSS interpretation.

Affected products

Freebsd — versions 15.0-RELEASE, 14.4-RELEASE, 14.3-RELEASE

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

Public proof-of-concept exploits

kaleth4/CVE-2026-4747-
kaleth4/CVE-2026-4747

References

security.freebsd.org/advisories/FreeBSD-SA-26:08.rpcsec_gss.asc (vendor-advisory)

Frequently asked questions

What is CVE-2026-4747?: CVE-2026-4747 is a vulnerability in Freebsd, classified under Stack-based Buffer Overflow. Published 2026-03-26.
Is CVE-2026-4747 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.