CVE-2026-31963
high
Red Hat CVSS v3 Base Score
7.3
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Confidentiality
High
Integrity
High
Availability
High
Published: March 18, 2026 (57 days ago)
Last Modified: March 18, 2026
Vendor: Red Hat
Source: REDHAT
Vulnerability Report
Generated by CyberWatcher
Description
A flaw was found in HTSlib, a library for reading and writing bioinformatics file formats. When processing CRAM (Compressed Reference-oriented Alignment Map) files, an out-by-one error in feature decoding can cause a heap buffer overflow. This vulnerability allows an attacker to craft a malicious CRAM file which, when opened by a user, could lead to a program crash, data corruption, or potentially arbitrary code execution.