CVE-2026-6845

Analyzed Analyzed - Analysis Complete

Denial of Service in binutils readelf via Malformed ELF File

Publication date: 2026-04-22

Last updated on: 2026-05-20

Assigner: Red Hat, Inc.

Description

A flaw was found in binutils, specifically within the `readelf` utility. This vulnerability allows a local attacker to cause a Denial of Service (DoS) by tricking a user into processing a specially crafted Executable and Linkable Format (ELF) file. The exploitation of this flaw can lead to the system becoming unresponsive due to excessive resource consumption or a program crash.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-04-22

Last Modified

2026-05-20

Generated

2026-06-16

EPSS Evaluated

2026-06-15

NVD

CVE-2026-6845

EUVD

EUVD-2026-24712

Affected Vendors & Products

Vendor	Product	Version / Range
redhat	enterprise_linux	7.0
redhat	enterprise_linux	6.0
redhat	enterprise_linux	8.0
redhat	openshift_container_platform	4.0
redhat	enterprise_linux	9.0
gnu	binutils	*
redhat	enterprise_linux	10.0
redhat	hardened_images	*

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-476	The product dereferences a pointer that it expects to be valid but is NULL.

Attack-Flow Graph

AI Quick Actions have not been generated yet.

Hi! I’m here to help you understand CVE-2026-6845. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-6845

Denial of Service in binutils readelf via Malformed ELF File

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart