CVE-2026-24450 - Vulnerability Details

- LibRaw: LibRaw: Arbitrary code execution via a specially crafted malicious file

Description

An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

Published: 2026-04-07

Score: 8.1 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability lies in the uncompressed_fp_dng_load_raw routine of LibRaw, where an integer overflow can cause a heap buffer overflow when processing a specially crafted DNG file. This flaw can be leveraged to execute arbitrary code within the context of the application that uses LibRaw. The underlying weakness is an integer overflow identified as CWE‑190, and the flaw is classified as high severity.

Affected Systems

This flaw affects the LibRaw library version 0.22.1. Any software—desktop, mobile, or embedded—that incorporates this version of LibRaw for image handling and processes DNG files is potentially vulnerable. The impact is limited to environments where a DNG file is parsed by an application using LibRaw.

Risk and Exploitability

The CVSS score of 8.1 denotes a high severity. The EPSS score of less than 1% suggests current exploitation is unlikely, and the flaw is not listed in the CISA KEV catalog. The likely attack vector is a malicious DNG file supplied either locally by a user or obtained over a network, which an application using LibRaw will load. The prerequisite for exploitation is minimal: the presence of LibRaw 0.22.1 and the ability to trigger the vulnerable function with a crafted file.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

LibRaw

affected

Version	Status	Constraints
`Commit 8dc68e2`	affected	—

Configuration 1 [-]

cpe:2.3:a:libraw:libraw:0.22.1:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Libraw

100%

Version	Status	Scheme	Platform
`8dc68e2`	affected	code_commit	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Verify the LibRaw version used; if it is 0.22.1 or older, plan an immediate update to a patched release.
Apply the latest LibRaw update as soon as possible to eliminate the integer overflow and buffer overflow risk.
If an upgrade cannot be performed immediately, restrict the processing of untrusted DNG files to a controlled sandbox environment or disable DNG support if it is not required.
Continue to monitor vendor advisories and security bulletins for new patches or mitigations.

Generated by OpenCVE AI on April 10, 2026 at 23:09 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00053.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://nvd.nist.gov/vuln/detail/CVE-2026-24450
https://talosintelligence.com/vulnerability_reports/TALOS-2026-2363
https://www.cve.org/CVERecord?id=CVE-2026-24450
https://www.talosintelligence.com/vulnerability_reports/TALOS-2026-2363

History

Mon, 13 Apr 2026 13:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 10 Apr 2026 21:00:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:a:libraw:libraw:0.22.1:::::::*

Wed, 08 Apr 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Libraw Libraw libraw
Vendors & Products		Libraw Libraw libraw

Wed, 08 Apr 2026 00:15:00 +0000

Type	Values Removed	Values Added
Title		LibRaw: LibRaw: Arbitrary code execution via a specially crafted malicious file
References		https://nvd.nist.gov/vuln/detail/CVE-2026-24450 https://www.cve.org/CVERecord?id=CVE-2026-24450
Metrics	threat_severity `None`	threat_severity `Moderate`

Tue, 07 Apr 2026 18:00:00 +0000

Type	Values Removed	Values Added
References		https://www.talosintelligence.com/vulnerability_reports/TALOS-2026-2363

Tue, 07 Apr 2026 15:15:00 +0000

Type	Values Removed	Values Added
Description		An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Weaknesses		CWE-190
References		https://talosintelligence.com/vulnerability_reports/TALOS-2026-2363
Metrics		cvssV3_1 `{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

Libraw Libraw

MITRE

Status: PUBLISHED

Assigner: talos

Published: 2026-04-07T13:49:23.872Z

Updated: 2026-04-13T13:04:17.479Z

Reserved: 2026-01-29T14:01:21.412Z

Link: CVE-2026-24450

Vulnrichment

Updated: 2026-04-07T16:23:24.613Z

NVD

Status : Analyzed

Published: 2026-04-07T15:17:37.040

Modified: 2026-04-10T20:51:18.200

Link: CVE-2026-24450

Redhat

Severity : Moderate

Publid Date: 2026-04-07T13:49:23Z

Links: CVE-2026-24450 - Bugzilla

OpenCVE Enrichment

Updated: 2026-04-13T14:27:14Z

Weaknesses

CWE-190

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object