CVE-2026-2889 | CCExtractor up to 0.96.5 src/lib_ccx/mp4.c processmp4 use after free (Issue 2055)

Inserito da Angelo Barbosa | Feb 20, 2026 | CVE

A vulnerability identified as problematic has been detected in CCExtractor up to 0.96.5. Affected is the function processmp4 in the library src/lib_ccx/mp4.c. Performing a manipulation results in use after free.

This vulnerability is identified as CVE-2026-2889. The attack is only possible with local access. Additionally, an exploit exists.

You should upgrade the affected component.

CVE-2026-2889 | CCExtractor up to 0.96.5 src/lib_ccx/mp4.c processmp4 use after free (Issue 2055)

Post correlati

CVE-2023-51157 | ZKTeco WDMS 5.1.3 Emp Name cross site scripting

CVE-2024-9804 | code-projects Blood Bank System 1.0 /admin/campsdetails.php hospital sql injection

CVE-2025-20896 | Samsung EasySetup up to 11.1.17 Communication implicit intent

CVE-2025-12346 | MaxSite CMS up to 109 HTTP Header uploads-require-maxsite.php X-Requested-FileName/X-Requested-FileUpDir unrestricted upload