Description
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in joncampbell123 doslib.This issue affects doslib: before doslib-20250729.
Published: 2026-03-24
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Memory buffer overrun leading to potential arbitrary code execution or denial of service
Action: Immediate Patch
AI Analysis

Impact

The vulnerability stems from improper bounds checking in the memory handling routines of doslib. This flaw allows an attacker to write or read beyond the intended buffer, potentially corrupting memory or executing arbitrary code. The impact includes compromise of confidentiality, integrity, or availability of the system using the library.

Affected Systems

Vendors and products affected are joncampbell123: doslib, specifically all releases prior to the 20250729 version. No further patch or version details are provided beyond the cutoff date.

Risk and Exploitability

The CVSS score of 7.8 indicates a high severity level. No EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog. While the exact attack vector is not explicitly stated, it is inferred that the flaw could be triggered by malformed input processed by the library, suggesting a potential local or remote exploitation scenario. The lack of immediate public exploit evidence makes the risk moderate-high until a confirmed exploit or patch is released.

Generated by OpenCVE AI on March 24, 2026 at 07:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade doslib to version 20250729 or later
  • If an upgrade cannot be performed immediately, isolate or replace the library usage in the application
  • Monitor logs for memory corruption or crash indicators
  • Apply any vendor-released patches as soon as they become available

Generated by OpenCVE AI on March 24, 2026 at 07:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 24 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 24 Mar 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Joncampbell123
Joncampbell123 doslib
Vendors & Products Joncampbell123
Joncampbell123 doslib

Tue, 24 Mar 2026 06:15:00 +0000

Type Values Removed Values Added
Description Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in joncampbell123 doslib.This issue affects doslib: before doslib-20250729.
Title Improper Restriction of Operations within the Bounds of a Memory Buffer in joncampbell123 doslib
Weaknesses CWE-119
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

Subscriptions

Joncampbell123 Doslib
cve-icon MITRE

Status: PUBLISHED

Assigner: GovTech CSG

Published:

Updated: 2026-03-24T14:17:22.605Z

Reserved: 2026-03-24T05:46:40.231Z

Link: CVE-2026-33851

cve-icon Vulnrichment

Updated: 2026-03-24T14:17:19.298Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-24T06:16:22.370

Modified: 2026-03-24T15:53:48.067

Link: CVE-2026-33851

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-25T20:39:59Z

Weaknesses