Format String Argument Mismatch Vulnerability in Netatalk Affected by Remote Attacks
CVE-2026-7835

3.1LOW

Key Information:

Vendor: Netatalk
Status: Netatalk
Vendor: CVE Published:; 21 May 2026

What is CVE-2026-7835?

A format string argument mismatch has been identified in Netatalk, specifically affecting versions 3.0.3 through 4.4.2. This vulnerability allows a remote authenticated attacker to exploit the flaw by crafting specific input, which could lead to incorrect format string processing. As a result, this could cause a minor denial of service condition, effectively disrupting service availability. It is advisable for users and administrators to review the security advisory and implement necessary updates to mitigate potential risks.

Affected Version(s)

Netatalk 3.0.3 <= 4.4.2

Netatalk 4.5.0

References

https://netatalk.io/security/CVE-2026-7835

vendor-advisory

CVSS V3.1

Score:

3.1

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 21, 2026
Vulnerability Reserved
May 5, 2026

Credit

Arjun Basnet from Securin

CVE-2026-7835 Data

JSON