Out-of-bounds Read Vulnerability in RTI Connext Professional Core Libraries
CVE-2026-3894

8.2HIGH

Key Information:

Vendor

Rti

Status
Connext Professional
Vendor
CVE Published:
17 June 2026

What is CVE-2026-3894?

An out-of-bounds read vulnerability exists in the RTI Connext Professional Core Libraries. This flaw can lead to buffer overreads, potentially allowing unauthorized access to sensitive information. Affected versions of Connext Professional span several major releases, from 5.0.0 through 7.7.0, making it essential for users to update their installations to mitigate associated risks.

Affected Version(s)

Connext Professional 7.4.0 < 7.7.0

Connext Professional 7.0.0 < 7.3.1.3

Connext Professional 6.1.0 < 6.1.*

References

https://www.rti.com/vulnerabilities/#cve-2026-3894

CVSS V4

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.