CVE-2026-56788
Undergoing Analysis Undergoing Analysis - In Progress
RTKLIB Out-of-Bounds Read in RINEX Processing

Publication date: 2026-06-25

Last updated on: 2026-06-25

Assigner: VulnCheck

Description
RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when processing unrecognized RINEX observation codes, allowing attackers to trigger denial of service. Crafted RINEX files with unknown observation types cause negative array indexing into the codepris table, resulting in reliable crashes and potential memory disclosure of adjacent global data.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-25
Last Modified
2026-06-25
Generated
2026-06-26
AI Q&A
2026-06-25
EPSS Evaluated
N/A
NVD
CVE-2026-56788
EUVD
EUVD-2026-39530
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
rtklib rtklib to 2.4.3 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in RTKLIB through version 2.4.3 and involves an out-of-bounds read in the getcodepri function. It occurs when the software processes unrecognized RINEX observation codes. Attackers can exploit this by crafting RINEX files containing unknown observation types, which causes negative array indexing into the codepris table. This leads to reliable crashes and may also result in the disclosure of adjacent global memory data.

Compliance Impact

The provided information does not specify any direct impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Detection Guidance

This vulnerability can be detected by monitoring for crashes or denial of service events in RTKLIB tools that process RINEX observation files, such as rnx2rtkp and RTKPOST.

Specifically, crafted RINEX files with unknown observation codes trigger the vulnerability, so testing with such files can help detect the issue.

There are no explicit detection commands provided, but you can attempt to process RINEX files containing unrecognized observation codes using RTKLIB tools and observe if crashes or abnormal behavior occur.

Additionally, monitoring system logs for crashes or denial of service symptoms related to RTKLIB processes can help identify exploitation attempts.

Mitigation Strategies

Immediate mitigation involves avoiding the processing of untrusted or crafted RINEX observation files that may contain unknown observation codes.

If possible, update RTKLIB to a version that includes the fix which validates the observation code index before accessing the priority table.

As a temporary measure, restrict access to RTKLIB tools like rnx2rtkp and RTKPOST to trusted users and environments to reduce the risk of exploitation.

Impact Analysis

The vulnerability can be exploited to cause a denial of service by crashing the affected application. Additionally, it may lead to the unintended disclosure of adjacent global memory data, which could potentially expose sensitive information.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-56788. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart