CVE-2026-53689
Deferred Deferred - Pending Action

Integer Overflow in libnfs NFS Server Connection

Publication date: 2026-06-10

Last updated on: 2026-06-10

Assigner: MITRE

Description
libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfs_zdr_string in lib/libnfs-zdr.c.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-10
Last Modified
2026-06-10
Generated
2026-06-30
AI Q&A
2026-06-11
EPSS Evaluated
2026-06-29
NVD
CVE-2026-53689
EUVD
EUVD-2026-36027

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
sahlberg libnfs From 6.0.0 (inc) to 55c18ea (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-1284 The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Compliance Impact

The provided information does not specify how this vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

This vulnerability exists in libnfs versions through 6.0.2 before commit 55c18ea. It occurs because the function libnfs_zdr_string in lib/libnfs-zdr.c does not properly validate the size of a string received during a connection to a crafted NFS server. This lack of validation can lead to an integer overflow.

Specifically, the vulnerability arises when the string size is not checked against the buffer size, allowing an overflow during bounds validation. The fix introduced a bounds check to ensure the string size does not exceed the buffer, preventing unsafe memory access.

Impact Analysis

The vulnerability has a CVSS v3.1 base score of 7.1, indicating a high severity. It can be exploited remotely (AV:N) with high attack complexity (AC:H) and requires no privileges (PR:N) but user interaction (UI:R).

Successful exploitation can lead to a high impact on confidentiality and integrity (C:H/I:H) and a low impact on availability (A:L). This means an attacker could potentially execute arbitrary code or cause memory corruption, leading to data compromise or manipulation.

Mitigation Strategies

To mitigate this vulnerability, you should update libnfs to a version that includes the fix introduced in commit 55c18ea or later.

The fix adds a bounds check to validate the string size before processing, preventing the integer overflow.

If updating immediately is not possible, consider restricting access to untrusted NFS servers to reduce the risk of exploitation.

Detection Guidance

There is no specific detection method or command provided in the available information to identify this vulnerability on your network or system.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53689. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart