CVE-2026-38755 | Busybox 1.38.0 Shell shell/ash.c evalcommand heap-based overflow

SecurityVulns

A vulnerability, which was classified as critical, has been found in Busybox 1.38.0. The affected element is the function evalcommand of the file shell/ash.c of the component Shell. This manipulation causes heap-based buffer overflow.

The identification of this vulnerability is CVE-2026-38755. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More