{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-35176", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-04-01T17:26:21.133Z", "datePublished": "2026-04-06T18:59:58.733Z", "dateUpdated": "2026-04-07T15:10:26.593Z"}, "containers": {"cna": {"title": "openFPGALoader has a heap buffer overflow in POFParser::parseSection() via crafted .pof file", "problemTypes": [{"descriptions": [{"cweId": "CWE-125", "lang": "en", "description": "CWE-125: Out-of-bounds Read", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j"}], "affected": [{"vendor": "trabucayre", "product": "openFPGALoader", "versions": [{"version": "<= 1.1.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-06T18:59:58.733Z"}, "descriptions": [{"lang": "en", "value": "openFPGALoader is a utility for programming FPGAs. In 1.1.1 and earlier, a heap-buffer-overflow read vulnerability exists in POFParser::parseSection() that allows out-of-bounds heap memory access when parsing a crafted .pof file. No FPGA hardware is required to trigger this vulnerability."}], "source": {"advisory": "GHSA-9x7m-m8gv-px2j", "discovery": "UNKNOWN"}}, "adp": [{"references": [{"url": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-07T15:06:31.361548Z", "id": "CVE-2026-35176", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-07T15:10:26.593Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-35176", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-07T15:06:31.361548Z"}}}], "references": [{"url": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-07T15:06:41.933Z"}}], "cna": {"title": "openFPGALoader has a heap buffer overflow in POFParser::parseSection() via crafted .pof file", "source": {"advisory": "GHSA-9x7m-m8gv-px2j", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "trabucayre", "product": "openFPGALoader", "versions": [{"status": "affected", "version": "<= 1.1.1"}]}], "references": [{"url": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j", "name": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "openFPGALoader is a utility for programming FPGAs. In 1.1.1 and earlier, a heap-buffer-overflow read vulnerability exists in POFParser::parseSection() that allows out-of-bounds heap memory access when parsing a crafted .pof file. No FPGA hardware is required to trigger this vulnerability."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-125", "description": "CWE-125: Out-of-bounds Read"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-06T18:59:58.733Z"}}}, "cveMetadata": {"cveId": "CVE-2026-35176", "state": "PUBLISHED", "dateUpdated": "2026-04-07T15:10:26.593Z", "dateReserved": "2026-04-01T17:26:21.133Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-04-06T18:59:58.733Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:trabucayre:openfpgaloader:*:*:*:*:*:*:*:*", "matchCriteriaId": "62581179-C886-4DE6-B888-53C8E5509FBA", "versionEndIncluding": "1.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "openFPGALoader is a utility for programming FPGAs. In 1.1.1 and earlier, a heap-buffer-overflow read vulnerability exists in POFParser::parseSection() that allows out-of-bounds heap memory access when parsing a crafted .pof file. No FPGA hardware is required to trigger this vulnerability."}], "id": "CVE-2026-35176", "lastModified": "2026-04-28T17:04:24.370", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.2, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-04-06T20:16:25.773", "references": [{"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/trabucayre/openFPGALoader/security/advisories/GHSA-9x7m-m8gv-px2j"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.1.1]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "openFPGALoader", "source": "cna", "vendor": "trabucayre"}, "product": "openfpgaloader", "vendor": "trabucayre"}], "analysis": {"en": {"generated_at": "2026-04-07T01:40:43.352279+00:00", "value": {"mitigation_remediation": ["Check the current openFPGALoader version you are running.", "If the version is 1.1.1 or older, update to the latest release available from the project\u2019s repository.", "Verify that any third\u2011party .pof files are from trusted sources before loading them with openFPGALoader.", "Consider disabling or restricting execution of openFPGALoader if it is not required in your environment.", "Keep the system\u2019s software stack updated to benefit from future security patches."], "summary": {"action": "Apply Patch", "impact": "Heap Buffer Overflow"}, "threat_synthesis": {"affected_systems": "The flaw affects trabucayre:openFPGALoader versions 1.1.1 and earlier. Upgrading to any release newer than 1.1.1 removes the vulnerable code path. No other vendor or product is directly impacted by this issue.", "description_and_impact": "openFPGALoader, a command\u2011line tool for programming FPGAs, contains a heap\u2011buffer\u2011overflow read in the POFParser::parseSection() routine. When it parses a specially crafted .pof file, the parser accesses memory beyond the bounds of an allocated buffer. The vulnerability does not require any FPGA hardware to trigger and can simply be exercised by running the utility against a maliciously crafted file. The out\u2011of\u2011bounds read may expose sensitive data that resides on the heap, potentially leading to information disclosure or, if the heap is overwritten, a crash or other downstream failures.", "risk_and_exploitability": "The CVSS base score of 7.1 indicates a high\u2011risk flaw. No exploit probability was reported and the vulnerability is not listed in CISA\u2019s KEV catalog. Because the attack only requires a crafted .pof file and can be exercised locally by anyone who can run openFPGALoader, the attack vector is inferred to be local or remote code running on the same system. An attacker could obtain confidential data from the process\u2019s memory or cause denial of service by crashing the program."}}}}, "created": "2026-04-07T06:54:36.475933+00:00", "updated": "2026-04-07T09:37:40.082907+00:00", "vendors": ["trabucayre", "trabucayre$PRODUCT$openfpgaloader"]}