CVE-2026-28407

MEDIUM EPSS 12.7%
Published Feb 27, 20264mo ago · Modified Mar 3, 20263mo ago
6.9 CVSS 4.0
Medium
Find Similar
Published Feb 27, 2026 4mo ago
Last Modified Mar 3, 2026 3mo ago

Description

malcontent is software for discovering supply-chain compromises through context, differential analysis, and YARA. Prior to version 1.21.0, malcontent would remove nested archives which failed to extract which could potentially leave malicious content. A better approach is to preserve these archives so that malcontent can attempt a best-effort scan of the archive bytes. Version 1.21.0 fixes the issue.

CVSS Details

Base Score
6.9
Exploitability
Impact
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope X

Threat Intelligence

EPSS Exploit Probability
12.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-703

Affected Products 1

VendorProductVersionRange
chainguardmalcontent* <1.21.0

References 3

  • github.com https://github.com/chainguard-dev/malcontent/commit/356c56659ccfcad0b249a97de8cf71f151ed3ee9
    Patch
  • github.com https://github.com/chainguard-dev/malcontent/pull/1383
    Issue TrackingPatch
  • github.com https://github.com/chainguard-dev/malcontent/security/advisories/GHSA-945p-3jhm-6rcp
    PatchVendor Advisory

Remediation

  • github.com https://github.com/chainguard-dev/malcontent/commit/356c56659ccfcad0b249a97de8cf71f151ed3ee9
    Patch
  • github.com https://github.com/chainguard-dev/malcontent/pull/1383
    Issue TrackingPatch
  • github.com https://github.com/chainguard-dev/malcontent/security/advisories/GHSA-945p-3jhm-6rcp
    PatchVendor Advisory