CVE-2026-33999

Awaiting Analysis Awaiting Analysis - Queue

BaseFortify

Publication date: 2026-04-23

Last updated on: 2026-05-04

Assigner: Red Hat, Inc.

Description

A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of service (DoS) or other severe impacts.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-04-23

Last Modified

2026-05-04

Generated

2026-05-07

EPSS Evaluated

2026-05-05

NVD

CVE-2026-33999

EUVD

EUVD-2026-25229

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-191	The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

Attack-Flow Graph

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

CVE-2026-33999

BaseFortify

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

Ask Our AI Assistant

EPSS Chart