Heap Buffer Out-of-Bounds Vulnerability in Osquery by Facebook
CVE-2026-54001
7HIGH
What is CVE-2026-54001?
An identified vulnerability in Osquery allows a local, unprivileged attacker to execute a heap buffer out-of-bounds write on Windows systems. This occurs through a crafted query targeting the authenticode table, exploiting weaknesses in publisher information parsing within the getOriginalProgramName function. If an attacker successfully manipulates this vulnerability, they can escalate their privileges from a standard user to the SYSTEM level. The issue has been remediated in version 5.23.1.
Affected Version(s)
osquery < 5.23.1
