ZDI-26-282: GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs ar
ORIGINAL SOURCE →via Zero Day Initiative
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] OpenAI briefs US agencies, Five Eyes on new cyber product, Axios reports
- [CYBER] Risky Business #834 -- Vercel gets owned, Mozilla dumps hundreds of Mythos bugs
- [CYBER] Auraboros RAT Adds Live Audio, Keylogging, and Cookie Theft via Open C2 Panel
- [CYBER] CVE-2026-6846 - Binutils: binutils: arbitrary code execution via malformed xcoff object file processing
- [CYBER] CVE-2026-6844 - Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
- [CYBER] CVE-2026-6843 - Nano: nano: format string vulnerability leads to denial of service