{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2026-34353", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "state": "PUBLISHED", "assignerShortName": "mitre", "dateReserved": "2026-03-27T04:55:57.875Z", "datePublished": "2026-03-27T04:55:58.294Z", "dateUpdated": "2026-03-27T13:45:47.350Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unknown", "packageURL": "pkg:opam/ocaml", "product": "OCaml", "vendor": "OCaml", "versions": [{"lessThanOrEqual": "4.14.3", "status": "affected", "version": "0", "versionType": "semver"}]}], "descriptions": [{"lang": "en", "value": "In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-27T05:03:46.214Z"}, "references": [{"url": "https://github.com/ocaml/ocaml/issues/14655"}, {"url": "https://github.com/ocaml/ocaml/pull/14674"}], "x_generator": {"engine": "CVE-Request-form 0.0.1"}, "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ocaml:ocaml:*:*:*:*:*:*:*:*", "versionEndIncluding": "4.14.3"}]}]}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T13:39:53.338499Z", "id": "CVE-2026-34353", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T13:45:47.350Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34353", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-27T13:39:53.338499Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T13:40:03.293Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "OCaml", "product": "OCaml", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "4.14.3"}], "packageURL": "pkg:opam/ocaml", "defaultStatus": "unknown"}], "references": [{"url": "https://github.com/ocaml/ocaml/issues/14655"}, {"url": "https://github.com/ocaml/ocaml/pull/14674"}], "x_generator": {"engine": "CVE-Request-form 0.0.1"}, "descriptions": [{"lang": "en", "value": "In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ocaml:ocaml:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "4.14.3"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-27T05:03:46.214Z"}}}, "cveMetadata": {"cveId": "CVE-2026-34353", "state": "PUBLISHED", "dateUpdated": "2026-03-27T13:45:47.350Z", "dateReserved": "2026-03-27T04:55:57.875Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-27T04:55:58.294Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ocaml:ocaml:*:*:*:*:*:*:*:*", "matchCriteriaId": "1D82953B-7824-4CB0-8C62-B8BCBFD42722", "versionEndIncluding": "4.14.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In OCaml through 4.14.3, Bigarray.reshape allows an integer overflow, and resultant reading of arbitrary memory, when untrusted data is processed."}], "id": "CVE-2026-34353", "lastModified": "2026-04-14T18:43:51.580", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.4, "impactScore": 4.0, "source": "cve@mitre.org", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.4, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-27T06:16:39.333", "references": [{"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "https://github.com/ocaml/ocaml/issues/14655"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "https://github.com/ocaml/ocaml/pull/14674"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-190"}], "source": "cve@mitre.org", "type": "Primary"}]}

{"bugzilla": {"description": "ocaml: OCaml: Information disclosure via integer overflow in Bigarray.reshape", "id": "2452093", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452093"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.9", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N", "status": "draft"}, "cwe": "CWE-190", "details": ["A flaw was found in OCaml. An integer overflow vulnerability exists in the `Bigarray.reshape` function, which can be triggered when processing untrusted data. This flaw allows an attacker to read arbitrary memory, potentially leading to information disclosure."], "name": "CVE-2026-34353", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Fix deferred", "package_name": "ocaml", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Fix deferred", "package_name": "ocaml", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Fix deferred", "package_name": "ocaml", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "ocaml", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "ocaml", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-03-27T04:55:58Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-34353\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-34353\nhttps://github.com/ocaml/ocaml/issues/14655\nhttps://github.com/ocaml/ocaml/pull/14674"], "threat_severity": "Moderate"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,4.14.3]"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "OCaml", "source": "cna", "vendor": "OCaml"}, "product": "ocaml", "vendor": "ocaml"}], "analysis": {"en": {"generated_at": "2026-03-27T06:21:04.925489+00:00", "value": {"mitigation_remediation": ["Upgrade the OCaml distribution to a version published after the fix in pull request #14674 (at least 4.14.4).", "Recompile all applications that link against OCaml\u2019s Bigarray module to ensure they use the patched library.", "If an immediate upgrade is infeasible, isolate or sanitize untrusted input before calling Bigarray.reshape, and limit its use to trusted data sources.", "Regularly check the OCaml project\u2019s repository and security advisories for further updates or notices."], "summary": {"action": "Patch Now", "impact": "Arbitrary Memory Read via Integer Overflow"}, "threat_synthesis": {"affected_systems": "Unpatched OCaml versions up to and including 4.14.3 are affected. The issue was identified in the OCaml toolchain, specifically the Bigarray library. Updating to versions released after the patch in the referenced pull request eliminates the vulnerability.", "description_and_impact": "An integer overflow occurs in OCaml's Bigarray.reshape function when processing untrusted data, allowing the program to read memory beyond intended bounds. This flaw can expose sensitive information from the process's address space, representing a moderate confidentiality breach. No direct execution or denial\u2011of\u2011service effect is claimed, but the ability to read arbitrary memory increases the attack surface significantly.", "risk_and_exploitability": "The CVSS score of 5.9 indicates moderate severity. EPSS data is not available, and the vulnerability is not listed in the CISA KEV catalog. Exploitation requires an attacker to provide crafted input to a program that uses OCaml's Bigarray.reshape. While the attack vector is likely local or within a controlled environment, any application that processes untrusted data with OCaml remains at risk until patched."}}}}, "created": "2026-03-27T08:30:58.533515+00:00", "title": "Integer Overflow in OCaml Bigarray.reshape Allowing Arbitrary Memory Read", "updated": "2026-03-27T09:22:18.338932+00:00", "vendors": ["ocaml", "ocaml$PRODUCT$ocaml"]}