Vulnerability Details CVE-2026-40469
Integer overflow vulnerability has been found in "builtin.c" program file of gawk (do_sub() routine). This issue could be used to overwrite gawk heap metadata and objects causing the program to crash. It affects 32-bit builds of gawk in versions 5.4.0 and below.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 11.6%
CVSS Severity
CVSS v3 Score 9.1
Products affected by CVE-2026-40469
-
-
cpe:2.3:a:fossies:gawk:5.1.1