{"vulnerability": "CVE-2026-49494", "sightings": [{"uuid": "4b9dc5ca-fd6e-4564-9c3d-4d0f0074a95e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-49494", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116711544258024293", "content": "\ud83d\udea8 HIGH severity: CVE-2026-49494 in Comodo Internet Security (Inspect.sys) allows remote DoS via crafted IPv6 packets \u2014 triggering a BSOD even with all ports blocked. No patch yet; consider disabling IPv6/firewall as a workaround. https://radar.offseq.com/threat/cve-2026-49494-integer-underflow-wrap-or-wraparoun-1b6588f6 #OffSeq #Vuln #CVE202649494", "creation_timestamp": "2026-06-08T00:00:41.385178Z"}, {"uuid": "b4006e78-b775-40c1-9d80-08ca4ab0d977", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116709041826843316", "content": "There is a new vulnerability with elevated criticality in Comodo Internet Security (CVE-2026-49494) https://vuldb.com/vuln/369116", "creation_timestamp": "2026-06-07T13:24:19.280339Z"}, {"uuid": "e32e60ee-7a4a-401b-941d-7202c930094c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnpbhy7awi2h", "content": "Comodo Internet Security\u306eInspect.sys\u306b\u6574\u6570\u30a2\u30f3\u30c0\u30fc\u30d5\u30ed\u30fc\u306e\u8106\u5f31\u6027\u304c\u3042\u308a\u3001\u30ea\u30e2\u30fc\u30c8\u653b\u6483\u8005\u304c\u7d30\u5de5\u3057\u305fIPv6\u30d1\u30b1\u30c3\u30c8\u3092\u9001\u4fe1\u3059\u308b\u3068\u3001\u30b7\u30b9\u30c6\u30e0\u304c\u30af\u30e9\u30c3\u30b7\u30e5\u3059\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u3002\nCVE-2026-49494 CVSS 7.5 | HIGH", "creation_timestamp": "2026-06-07T13:27:45.074110Z"}, {"uuid": "938909ef-4459-4144-967b-e5b39e010f21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnpdbilyb72g", "content": "\ud83d\udfe0 CVE-2026-49494 - High (7.5)\n\nComodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-49494/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-07T13:59:55.370360Z"}, {"uuid": "cd2e06a5-a50d-4ecf-97d1-29da3a3f9478", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://gist.github.com/ichintu/1fa73ee279a0b98b9904fc693266bdeb", "content": "**CVE-2026-49494 \u2013 Comodo Inspect.sys IPv6 Integer Underflow**\n\nComodo\u2019s firewall driver (Inspect.sys) performs an unsigned subtraction of IPv6 extension\u2011header lengths from a 64\u2011bit payload length without bounds checking. This can underflow, yielding a very large value processed before rule enforcement. An attacker can send a single crafted IPv6 packet to any protected Windows system, causing out\u2011of\u2011bounds reads and a massive memcpy at DISPATCH_LEVEL, which crashes the OS (BSOD). The flaw is remote\u2011able, requires no authentication, and is rated **8.7\u202fHigh**. Published\u202fJuly\u202f7\u202f2026.", "creation_timestamp": "2026-06-07T16:00:13.000000Z"}, {"uuid": "cdb4d6a1-fe16-4148-b77b-43d00f82c7fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-49494", "content": "", "creation_timestamp": "2026-06-07T04:16:20.000000Z"}, {"uuid": "1487caf1-de58-4a91-b10b-b9b005d057b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnp6tprsqw25", "content": "CVE-2026-49494 - Comodo Internet Security Inspect.sys IPv6 Integer Underflow Remote Denial of Service\nCVE ID : CVE-2026-49494\n \n Published : June 7, 2026, 12:08 p.m. | 24\u00a0minutes ago\n \n Description : Comodo Internet Security's firewall driver Inspect.sys contains an integer un...", "creation_timestamp": "2026-06-07T12:41:01.554643Z"}, {"uuid": "80e32023-898c-4d8d-b65d-92624a1d46f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-49494", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnqetnlfcm23", "content": "Comodo Internet Security flaw: HIGH severity integer underflow in Inspect.sys lets remote attackers crash Windows (BSOD) via IPv6 packets \u2014 even with all ports blocked. Disable IPv6/firewall if possible until patched. https://radar.offseq.com/threat/cve-2026-49494-integer-underflow-wrap-or-wrapar...", "creation_timestamp": "2026-06-08T00:00:56.238761Z"}, {"uuid": "7a9b8311-976d-4ed2-8a8d-f79618c1b2e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49494", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mnrlvmsaeb27", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-49494\n\nComodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 6...", "creation_timestamp": "2026-06-08T11:39:39.305913Z"}]}