CVE Catalog

CVE-2026-36228

HighCVSS 7.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.43%

34th percentile - higher than 34% of all known CVEs

Summary

A buffer overflow vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via the chat message functionality.

Risk Assessment

An attacker can remotely take control of the chat server, steal user data, or install malware, compromising system confidentiality and integrity.

Recommendation

Immediately update Easy Chat Server to the latest available version or apply a security patch from the vendor. If no update is available, consider temporarily disabling the chat functionality or using a firewall to block suspicious requests.

Original NVD description (English source)

Buffer Overflow vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via the chat message functionality

Vulnerability data from NVD (NIST) · CISA KEV · EPSS