CVE-2026-4743 MEDIUM

CVE-2026-4743: Null-Pointer Dereference Vulnerability in taurusxin/ncmdump

Vendor Taurusxin
Product ncmdump
Weakness CWE-476
Published March 24, 2026
Last update March 24, 2026

CVSS base score

5.2/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/S:N/AU:N/R:U/V:D/RE:L/U:Green

What the vulnerability does

01Description

NULL Pointer Dereference vulnerability in taurusxin ncmdump (‎src/utils‎ modules). This vulnerability is associated with program files cJSON.Cpp‎. This issue affects ncmdump: before 1.4.0.

Key dates

02Disclosure timeline

March 24, 2026 CVE published
March 24, 2026 Record updated