{"vulnerability": "CVE-2026-43988", "sightings": [{"uuid": "269e88d5-4db3-438b-b8f6-3551ee23c5d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43988", "type": "seen", "source": "https://gist.github.com/tw89Coder/cd011dc1842625f821c171e41e812fbc", "content": "# Security Research & Advisories\n\nA curated list of my public security research, vulnerability disclosures, and assigned advisories. \n\n| Target / Component | Vulnerability Type | Identifier(s) | Published(GMT +8) |\n| :--- | :--- | :--- | :--- |\n| **Vanetza** | Remote Denial of Service via Uncaught Exception in ECC Verification | `CVE-2026-37554``GHSA-44qj-vh8c-5354` | May 06, 2026 |\n| **Vanetza** | Remote Denial of Service via Uncaught Exception in ASN.1/OER Parsing | `CVE-2026-43988``GHSA-j6cj-rp87-mfrx` | May 06, 2026 |\n| **Vanetza** | Remote Denial of Service via Uncaught OER Encoding Exception in Cryptographic Verification | `CVE-2026-44905``GHSA-q9fq-3rx9-7xcv` | May 09, 2026 |\n| **mouse07410/asn1c** | 1-byte Heap Out-of-Bounds Read in `INTEGER_decode_oer` via Malformed OER Payload | `CVE-Request``GHSA-wxx8-76rw-96j2` | May 11, 2026 |\n\n> **Notes on Availability:**\n> * **CVE Status:** Some assigned CVEs might currently be in the **RESERVED** state pending full publication by NVD/MITRE.\n> * **GHSA Synchronization:** Certain GHSAs have not yet synchronized to the global GitHub Advisory Database. These can be viewed directly under the \"Security\" tab within the respective project's repository.", "creation_timestamp": "2026-05-11T20:29:17.000000Z"}, {"uuid": "3d30eb71-27b6-4347-aef1-5d9c2d1f0ff9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-43988", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmsmovh4ot2z", "content": "\ud83d\udfe0 CVE-2026-43988 - High (7.5)\n\nVanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-43988/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T04:01:17.121652Z"}]}