CVE-2026-11460 – Boost Serialization improper validation of specified type of input

CVE ID :CVE-2026-11460

Published : June 7, 2026, 8:16 p.m. | 16 minutes ago

Description :A flaw has been found in Boost Serialization up to 1.91. The impacted element is an unknown function. This manipulation causes improper validation of specified type of input. It is possible to initiate the attack remotely. The exploit has been published and may be used. The maintainer was notified on Aug 2025 and a disclosure deadline was set for 90 days. The maintainer acknowledged but postponed indefinitely citing time concerns. No patch is currently available and the disclosure deadline has expired.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-11461 – NousResearch hermes-agent resume Endpoint hermes_state.py resolve_session_by_title authorization

CVE-2026-11463 – USCiLab Cereal Shared Pointer type confusion

CVE-2026-11462 – Chengdu Everbrite Network Technology BeikeShop Stripe Plugin StripeController.php callback improper authorization

CVE-2026-49494 – Comodo Internet Security Inspect.sys IPv6 Integer Underflow Remote Denial of Service