CNNVD-202601-4580 Information

CNNVD ID

CNNVD-202601-4580

Related CVE

CVE-2026-24823

• CNNVD Published: 2026-01-27

Description (Chinese)

X-TRACK是VIFEX个人开发者的一个支持离线地图和轨迹记录的GPS自行车速度计。 X-TRACK v2.7及之前版本存在安全漏洞，该漏洞源于程序文件inflate.C存在越界写入和未检查输入大小的缓冲区复制。

Description (English)

X-TRACK is a GPS bike velocity meter that supports offline maps and track records of VIFEX individual developers. There is a security loophole in X-TRACK v. 2.7 and earlier versions, which stems from the existence of cross-border writing and unchecked input sizes of buffer zones in the application document Inflate.C.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/FASTSHIFT/X-TRACK/pull/120