CVE-2026-4016 | GPAC 26.03-DEV SVG Parser src/filters/load_svg.c svgin_process out-of-bounds write (Issue 3468)

Inserito da Angelo Barbosa | Mar 11, 2026 | CVE

A vulnerability was found in GPAC 26.03-DEV. It has been classified as critical. Affected by this vulnerability is the function svgin_process of the file src/filters/load_svg.c of the component SVG Parser. The manipulation leads to out-of-bounds write.

This vulnerability is uniquely identified as CVE-2026-4016. Local access is required to approach this attack. Moreover, an exploit is present.

It is suggested to install a patch to address this issue.

CVE-2026-4016 | GPAC 26.03-DEV SVG Parser src/filters/load_svg.c svgin_process out-of-bounds write (Issue 3468)

Post correlati

CVE-2024-34328 | Sielox AnyWare 2.1.2 redirect

CVE-2025-4331 | SourceCodester Online Student Clearance System 1.0 /Admin/login.php username/password sql injection

CVE-2024-8743 | Bit File Manager Plugin up to 6.5.7 on WordPress JavaScript File unrestricted upload

CVE-2024-47140 | Observium CE 24.4.13528 add_alert_check cross site scripting (TALOS-2024-2090)