CVE 9.8 CRITICAL

CVE-2026-37534_CVE-2026-37534

May 1, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Transport_Protocol_Data_Transfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame.

AI Analysis

Integer underflow vulnerability allowing arbitrary memory write via crafted CAN frame sequence number

Basic Information

ID CVE-2026-37534

Source mitre

Published May 1, 2026 at 00:00

Modified May 1, 2026 at 19:06

Affected Product

Vendor DanielMartensson

Product Open-SAE-J1939

Version commit b6caf884df46435e539b1ecbf92b6c29b345bdfe

Affected Versions n/a n/a n/a

CWE Classification

CWE-191

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor DanielMartensson

Product Open-SAE-J1939

Version commit b6caf884df46435e539b1ecbf92b6c29b345bdfe

References

{
    "lastseen": "",
    "description": "Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Transport_Protocol_Data_Transfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame.",
    "published": "2026-05-01T00:00:00.000Z",
    "modified": "2026-05-01T19:06:00.671Z",
    "type": "cve",
    "title": "CVE-2026-37534",
    "source": "mitre",
    "references": "https://github.com/DanielMartensson/Open-SAE-J1939\nhttps://gist.github.com/sgInnora/f4ac66faeefe07a653ceeb3f58cdc381",
    "id": "CVE-2026-37534",
    "bulletinFamily": "",
    "cwe": [
        "CWE-191"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Open-SAE-J1939",
    "version": "commit b6caf884df46435e539b1ecbf92b6c29b345bdfe",
    "vendor": "DanielMartensson",
    "ai_description": "Integer underflow vulnerability allowing arbitrary memory write via crafted CAN frame sequence number",
    "ai_severity": "Critical",
    "ai_vendor": "DanielMartensson",
    "ai_product": "Open-SAE-J1939",
    "ai_version": "commit b6caf884df46435e539b1ecbf92b6c29b345bdfe",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply