CVE-2026-23749 | Golioth Firmware SDK up to 0.21.x blockwise_transfer_init null termination

A vulnerability described as problematic has been identified in Golioth Firmware SDK up to 0.21.x. The affected element is the function blockwise_transfer_init. The manipulation results in improper null termination.

This vulnerability is cataloged as CVE-2026-23749. The attack must be initiated from a local position. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More