ByteOS Network

NVD Vulnerability Details :

CVE-2026-56209

Awaiting Analysis

Source-secalert@redhat.com

Published At-19 Jun, 2026 | 17:16

Updated At-22 Jun, 2026 | 18:33

An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC (Scalable Video Coding) layer ID control function allows an attacker to inject an arbitrary pointer into the cyclic refresh map field via crafted image pixel values. The encoder then writes approximately 1,200 bytes at the attacker-controlled address. This is fully deterministic and does not require a separate information leak. An attacker who can supply frames to a network-facing libaom encoder with SVC enabled could exploit this for denial of service or potential code execution.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	7.1	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
			N/A

Type: Secondary

Version: 3.1

Base score: 7.1

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

Type: N/A

Version:

Base score:

Base severity: N/A

Vector:

Weaknesses

CWE ID	Type	Source
CWE-787	Secondary	secalert@redhat.com

CWE ID: CWE-787

Type: Secondary

Source: secalert@redhat.com

References

Hyperlink	Source	Resource
https://access.redhat.com/security/cve/CVE-2026-56209	secalert@redhat.com	N/A
https://aomedia.googlesource.com/aom/+/a93ba0ffaa	secalert@redhat.com	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=2490800	secalert@redhat.com	N/A
https://issues.chromium.org/issues/503993984	secalert@redhat.com	N/A