CVE-2026-33566 PUBLISHED

Assigner: jpcert
Reserved: 21.04.2026 Published: 27.04.2026 Updated: 27.04.2026

There is a cypher injection issue in LogonTracer prior to v2.0.0. If specially crafted Windows event log data is loaded, the contents of the database may be altered.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
CVSS Score: 5.1

Product Status

Vendor Japan Computer Emergency Response Team Coordination Center (JPCERT/CC)
Product LogonTracer
Versions
  • Version prior to v2.0.0 is affected

References

Problem Types