CVE-2026-42482 - Vulnerability Details

- Stack-based Buffer Overflow in hashcat’s Hex Mangle Functions Allowing Potential Code Execution

Description

A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted rule file, or via the -j or -k rule options used with password candidates of 128 or more characters. The vulnerability is caused by a bounds check that fails to account for the 2x expansion that occurs when password bytes are converted to hexadecimal.

Published: 2026-05-01

Score: 7.5 High

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

A stack-based buffer overflow exists in the hex‑mangle functions of hashcat, allowing an attacker to crash the program or, possibly, execute arbitrary code by supplying a specially crafted rule file or using the -j or -k options with password candidates of 128 or more characters. The flaw is caused by a bounds check that does not account for the two‑times expansion of password bytes when converted to hexadecimal.

Affected Systems

hashcat version 7.1.2 is affected. The issue was identified in the source functions used during rule application, so any environment deploying that specific version and using the rule options described may be vulnerable. No other product or version data was provided in the advisory.

Risk and Exploitability

The CVSS score is 7.5, the EPSS score is not available, so the likelihood of exploitation is unclear from the data. However, because the vulnerability can be triggered by a crafted rule file or certain command options, environments that routinely run hashcat with user‑supplied rules or long password candidates face a definite risk. The vulnerability is not currently in the CISA KEV catalog, but the potential for arbitrary code execution means it deserves prompt attention.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

cpe:2.3:a:hashcat:hashcat:7.1.2:*:*:*:*:*:*:*

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade hashcat to the latest available version to remove the flaw.
Avoid using the -j or -k rule options with password candidates of 128 bytes or more until a patched version is deployed.
If an upgrade is delayed, restrict rule file usage to trusted sources, monitor for crashes, and consider disabling rule options during critical operations.

Generated by OpenCVE AI on May 2, 2026 at 08:02 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
https://gist.github.com/sgInnora/107f2eb20367e47d58c911e38d56a91f

History

Sat, 02 May 2026 08:30:00 +0000

Type	Values Removed	Values Added
Title		Stack-based Buffer Overflow in hashcat’s Hex Mangle Functions Allowing Potential Code Execution

Fri, 01 May 2026 19:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-121
Metrics	cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}` cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

Fri, 01 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Hashcat Hashcat hashcat
Weaknesses		CWE-787
CPEs		cpe:2.3:a:hashcat:hashcat:7.1.2:::::::*
Vendors & Products		Hashcat Hashcat hashcat
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Fri, 01 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code via a crafted rule file, or via the -j or -k rule options used with password candidates of 128 or more characters. The vulnerability is caused by a bounds check that fails to account for the 2x expansion that occurs when password bytes are converted to hexadecimal.
References		https://gist.github.com/sgInnora/107f2eb20367e47d58c911e38d56a91f

Subscriptions

Hashcat Hashcat

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2026-05-01T00:00:00.000Z

Updated: 2026-05-01T18:36:42.292Z

Reserved: 2026-04-27T00:00:00.000Z

Link: CVE-2026-42482

Vulnrichment

Updated: 2026-05-01T18:32:13.774Z

NVD

Status : Modified

Published: 2026-05-01T14:16:22.577

Modified: 2026-05-01T19:16:32.830

Link: CVE-2026-42482

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-02T08:15:16Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object