ByteOS Network

NVD Vulnerability Details :

CVE-2026-9530

Deferred

Source-cna@vuldb.com

Published At-26 May, 2026 | 05:16

Updated At-26 May, 2026 | 19:54

A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read_2004_compressed_section of the file src/decode.c of the component Dwgbmp Utility. Executing a manipulation can lead to out-of-bounds read. The attack requires local access. The exploit has been made available to the public and could be used for attacks. This patch is called 8f03865f37f5d4ffd616fef802acc980be54d300. It is advisable to implement a patch to correct this issue.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	1.9	LOW	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Secondary	3.1	3.3	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Secondary	2.0	1.7	LOW	AV:L/AC:L/Au:S/C:N/I:N/A:P

Type: Secondary

Version: 4.0

Base score: 1.9

Base severity: LOW

Vector:

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Secondary

Version: 3.1

Base score: 3.3

Base severity: LOW

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Type: Secondary

Version: 2.0

Base score: 1.7

Base severity: LOW

Vector:

AV:L/AC:L/Au:S/C:N/I:N/A:P

Weaknesses

CWE ID	Type	Source
CWE-119	Secondary	cna@vuldb.com
CWE-125	Secondary	cna@vuldb.com

CWE ID: CWE-119

Type: Secondary

Source: cna@vuldb.com

CWE ID: CWE-125

Type: Secondary

Source: cna@vuldb.com

References

Hyperlink	Source	Resource
https://github.com/HackC0der/CVE-Repos/blob/main/libredwg/libredwg_6d6a339_heap_oob_write_read_2004_compressed_section.dwg	cna@vuldb.com	N/A
https://github.com/LibreDWG/libredwg/commit/8f03865f37f5d4ffd616fef802acc980be54d300	cna@vuldb.com	N/A
https://github.com/LibreDWG/libredwg/issues/1248	cna@vuldb.com	N/A
https://vuldb.com/submit/814275	cna@vuldb.com	N/A
https://vuldb.com/vuln/365549	cna@vuldb.com	N/A
https://vuldb.com/vuln/365549/cti	cna@vuldb.com	N/A
https://www.gnu.org/	cna@vuldb.com	N/A
https://github.com/LibreDWG/libredwg/issues/1248	134c704f-9b21-4f2e-91b3-4a467353bcc0	N/A