Botan SM2 Decryption Heap Over-read Vulnerability (CVE-2026-32877)
Botan C++ cryptography library versions 2.3.0 before 3.11.0 are vulnerable to a heap over-read during SM2 decryption due to insufficient validation of the authentication code length, potentially leading to crashes or undefined behavior.
Botan is a C++ cryptography library. A vulnerability exists in versions 2.3.0 to prior to 3.11.0 related to SM2 decryption. The flaw lies in the insufficient validation of the authentication code value (C3) length before comparison. An invalid ciphertext can trigger a heap over-read of up to 31 bytes, potentially causing a crash or other undefined behavior. This vulnerability, identified as CVE-2026-32877, can be exploited if the application using the library processes attacker-controlled…
Detection coverage 2
Detect Process Loading Vulnerable Botan Library
mediumDetects processes loading a vulnerable version of the Botan library (2.3.0 - 3.10.x)
Detect process using vulnerable botan library on Linux
mediumDetects processes loading a vulnerable version of the Botan library (2.3.0 - 3.10.x) on linux systems
Detection queries are kept inside the platform. Get full rules →
Indicators of compromise
2