CVE-2026-4887 in GIMP信息

摘要

由 MITRE • 2026-03-26

A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote attacker could exploit this by convincing a user to open a specially crafted PCX image. Successful exploitation could lead to out-of-bounds memory disclosure and a possible application crash, resulting in a Denial of Service (DoS).

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

负责

Redhat

预定

2026-03-26

披露

2026-03-26

管理

已接受

条目

VDB-353590

CPE

准备好

CWE

CWE-193 (已确认)

CVSS

7.1 (NVD)

EPSS

0.00050

KEV

否

活动

非常低

部门

Industry, Agriculture, ...

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-4887
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-4887
CVE Details	https://www.cvedetails.com/cve/CVE-2026-4887/

◂ 上一步一览下一步 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!