Ghostwire

CVE-2026-40468: Integer overflow vulnerability has been found in "builtin.c" program file of gawk. This issue may lead to memory...

LOW CVSS 0.0

Published: July 13, 2026 | Last Modified: July 13, 2026

Description

Integer overflow vulnerability has been found in "builtin.c" program file of gawk. This issue may lead to memory exhaustion on the hosting operating system and could be used to overwrite gawk heap metadata and objects with attacker-controlled bytes. It affects gawk in versions 5.4.0 and below.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (1 articles)

References