Description
GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the parsing of HDR files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28266.
Published: 2026-06-24
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw is a heap-based buffer overflow in GIMP's HDR file parser caused by an unchecked length field. An attacker can supply a malicious HDR file that triggers the copying of data beyond the bounds of a heap buffer, allowing the attacker to execute arbitrary code with the privileges of the GIMP process and thereby gain full control of the host system.

Affected Systems

The vulnerability affects all installations of GIMP that use the HDR file parsing routine; no specific version constraints are listed in the advisory. The vendor supplying the affected product is GIMP.

Risk and Exploitability

The CVSS score of 7.8 indicates a high potential impact. EPSS information is not available, and the vulnerability is not listed in the CISA KEV catalog, so current exploitation probability is uncertain. Exploitation requires user interaction—an attacker must trick a user into opening a malicious HDR file or visiting a page that triggers the file open dialog—making the attack vector rely on social engineering or malicious content delivery. Once triggered, the heap overflow leads to remote code execution with the privileges of the GIMP process, potentially allowing arbitrary system compromise.

Generated by OpenCVE AI on June 25, 2026 at 13:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest GIMP update that contains the fix for the HDR parser buffer overflow
  • If HDR import is not required, disable the import feature or restrict file types that GIMP accepts
  • Avoid opening untrusted HDR files or visiting unknown pages that may prompt GIMP file dialogs

Generated by OpenCVE AI on June 25, 2026 at 13:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DLA Debian DLA DLA-4487-1 gegl security update
Debian DSA Debian DSA DSA-6142-1 gegl security update
History

Thu, 25 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 25 Jun 2026 12:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-131
References
Metrics threat_severity

None

cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

threat_severity

Important


Thu, 25 Jun 2026 06:00:00 +0000

Type Values Removed Values Added
First Time appeared Gimp
Gimp gimp
Vendors & Products Gimp
Gimp gimp

Wed, 24 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of HDR files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-28266.
Title GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
Weaknesses CWE-122
References
Metrics cvssV3_0

{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: zdi

Published:

Updated: 2026-07-15T01:20:32.294Z

Reserved: 2026-02-06T01:17:46.262Z

Link: CVE-2026-2050

cve-icon Vulnrichment

Updated: 2026-07-13T12:04:59.899Z

cve-icon NVD

No data.

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-24T21:43:46Z

Links: CVE-2026-2050 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-25T14:00:05Z

Weaknesses
  • CWE-122

    Heap-based Buffer Overflow

  • CWE-131

    Incorrect Calculation of Buffer Size