Description
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the parsing of HDR files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28266.
Published: 2026-06-24
Score: 7.8 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw is a heap-based buffer overflow in GIMP's HDR file parser caused by an unchecked length field. An attacker can supply a malicious HDR file that causes the program to copy data past the bounds of a heap buffer, allowing the attacker to execute arbitrary code in the context of the current GIMP process and thereby gain full control of the host system.

Affected Systems

The vulnerability affects all affected installations of GIMP that use the HDR file parsing routine; no specific version constraints are listed in the advisory. The vendor supplying the affected product is GIMP.

Risk and Exploitability

The CVSS score of 7.8 indicates a high potential impact. EPSS information is not available, and the vulnerability is not listed in the CISA KEV catalog, so current exploitation probability is uncertain. Exploitation requires user interaction—an attacker must trick a user into opening a malicious HDR file or visiting a page that triggers the file open dialog—making the attack vector rely on social engineering or malicious content delivery. Once triggered, the heap overflow leads to remote code execution with the privileges of the GIMP process, potentially allowing arbitrary system compromise.

Generated by OpenCVE AI on June 25, 2026 at 00:07 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest GIMP update that contains the fix for the HDR parser buffer overflow
  • If HDR import is not required, disable the import feature or restrict file types that GIMP accepts
  • Avoid opening untrusted HDR files or visiting unknown pages that may prompt GIMP file dialogs

Generated by OpenCVE AI on June 25, 2026 at 00:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4487-1 gegl security update
Debian DSA Debian DSA DSA-6142-1 gegl security update
History

Wed, 24 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of HDR files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28266.
Title GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
Weaknesses CWE-122
References
Metrics cvssV3_0

{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: zdi

Published:

Updated: 2026-06-24T21:43:46.856Z

Reserved: 2026-02-06T01:17:46.262Z

Link: CVE-2026-2050

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T00:15:02Z

Weaknesses
  • CWE-122

    Heap-based Buffer Overflow