CVE-2026-9503 in LibreDWGИнформация

Сводка

по MITRE • 26.05.2026

A security flaw has been discovered in GNU LibreDWG up to 0.14. This impacts the function dwg_next_entity of the file src/decode.c of the component DWG File Handler. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. The patch is identified as 8f03865f37f5d4ffd616fef802acc980be54d300. Upgrading the affected component is advised.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

VulDB

Раскрытие

26.05.2026

Модерация

принято

Вход

VDB-365485

CPE

готов

CWE

CWE-476 (Подтверждённый)

Эксплойт

Скачать

CVSS

3.3 (VulDB)

EPSS

0.00014

KEV

Нет

Деятельности

Очень низкий

Сектор

Police, Chemical, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-9503
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-9503
CVE Details	https://www.cvedetails.com/cve/CVE-2026-9503/

◂ Предыдущий Обзор Далее ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!