CVE-2026-38639

Name: CVE-2026-38639 — Vulnerability Record
Brand: Quanteta Data Lab
SKU: CVE-2026-38639

No CVSS score published

Source data as of: 2026-06-27 05:07:21 UTC

At a glance

Severity: No CVSS score published
CVSS: No CVSS score in the NVD record
EPSS: EPSS not provided by FIRST.org for this CVE
CISA KEV: No
Published: 2026-06-26 · Modified: 2026-06-26
References: Jump to references (4)

CVSS / EPSS / KEV

EPSS — EPSS not provided by FIRST.org for this CVE Source: FIRST.org

CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of Service (DoS) via parsing a crafted input.

Record details

CVE ID: CVE-2026-38639
CISA KEV: No
Affected configurations (CPE): 0
Published: 2026-06-26
Modified: 2026-06-26
Status: Received

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

Exploit / PoC https://github.com/Marsman1996/pocs/tree/master/redox/CVE-2026-38639
Reference https://gitlab.redox-os.org/redox-os/relibc/-/issues/265
Reference https://gitlab.redox-os.org/redox-os/relibc/-/merge_requests/990
Reference https://gitlab.redox-os.org/redox-os/relibc/-/work_items/265

← Back to all records