Ctrl + K
/ news / CVE
CVEPublished 2026-04-28Modified 2026-05-040 articles on news6 live referencesNVD data

CVE-2026-6238Gnu · Glibc

Vulnerability data via NVD (ingested)

CVSS v3.1
6.5
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
EPSS percentile
11
Exploit Prediction Scoring System · top 89% of all CVEs
Weaknesses (CWE)
CWE-126Buffer Over-read
Description

The deprecated functions ns_printrrf, ns_printrr and fp_nquery in the GNU C Library version 2.2 and newer fail to validate the RDATA content against the RDATA length in a DNS response when processing LOC, CERT, TKEY or TSIG records, which may allow an attacker to craft a DNS response, causing a target application to crash or read uninitialized memory. These functions are for application debugging only and hence not in the path of code executed by the DNS resolver. Further, they have been deprecated since version 2.34 and should not be used by any new applications. Applications should consider porting away from these interfaces since they may be removed in future versions.

Timeline
Published 2026-04-28
Modified 2026-05-04

External references

NVDMITREExploit-DBGitHub PoCSploitusVulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts
vuln:CVE-2026-6238
Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product
product:"Gnu Glibc"
All exposed Gnu Glibc instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Glibc"
HTTP body or banner mentions "Glibc" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2026-6238
Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2026-6238
Censys host search filtered to this CVE id.
grep.app
CVE-2026-6238
Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2026-6238
GitHub code search for direct mentions.
Google dork
"CVE-2026-6238" exploit -site:nvd.nist.gov
Write-ups and news, NVD excluded.

Known PoCs on GitHub (8)

CVE-2026-62388 repos
ZL154/JellyfinSecurityC#
A Jellyfin plugin that adds native two-factor authentication (TOTP, email OTP) with trusted device tokens, TV device pairing, LAN bypass, and API key bypass. Server-side enforcemen…
★ 96·updated 1d ago
abyo-software/s4Rust
GPU-accelerated transparent compression S3-compatible storage gateway. Drop-in replacement for AWS S3 endpoints; cuts your S3 bill 50-80% with no app changes (Rust, nvCOMP, zstd).
★ 65·updated today
svg153/awesome-starsunknown
★ 12·updated today
ochebotar/copy-fail-CVE-2026-31431-detection-probeShell
Safe detection tooling for CVE-2026-31431 "Copy Fail" and CVE-2026-43284 "Dirty Frag" — a local privilege escalation in the Linux kernel's algif_aead module affecting all major dis…
★ 10·updated 3w ago
Nsbx/awesome-starsunknown
My Awesome List generated by : https://github.com/abhijithvijayan/stargazed
★ 10·updated today
bogdanpricop/docker-dashJavaScript
Self-hosted Docker management dashboard — runs standalone (zero deps) or in HA mode (Redis). In-app observability wizard (Prometheus+Grafana). Multi-host SSH/TCP, Trivy+Grype+Scout…
★ 6·updated 1w ago
LegacyToRustProject/RustPressRust
★ 5·updated 3mo ago
Correia-jpv/fucking-awesome-javaunknown
A curated list of awesome frameworks, libraries and software for the Java programming language. With repository stars⭐ and forks🍴
★ 4·updated today
We haven't classified any articles referencing CVE-2026-6238 yet. The external references above still apply.