Description
A security flaw has been discovered in GNU LibreDWG up to 0.14. This impacts the function dwg_next_entity of the file src/decode.c of the component DWG File Handler. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. The patch is identified as 8f03865f37f5d4ffd616fef802acc980be54d300. Upgrading the affected component is advised.
Published: 2026-05-25
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw lies in the dwg_next_entity function within the DWG File Handler of GNU LibreDWG, triggering a null pointer dereference when processing certain DWG files. The vulnerability is triggered by a locally crafted file; execution of the dereference leads to a crash of the affected application, effectively disrupting service. No evidence in the description indicates remote code execution, so the primary effect is a local denial of service or potential privilege‑ascending if the process runs with elevated rights.

Affected Systems

Systems that run LibreDWG versions 0.14 or earlier are affected. The issue is present in the source file src/decode.c of the DWG File Handler component. Affected users thus include anyone who processes DWG files with an unpatched version of LibreDWG.

Risk and Exploitability

The CVSS score of 4.8 signifies moderate severity. EPSS data is not available, and the weakness is not listed in CISA’s KEV catalog, but the exploit code has been released publicly. Because the attack must be initiated from a local position, the risk is confined to environments where an attacker can supply a malicious DWG file to the compromised process. The vulnerability is thus a moderate local threat but remains actionable as the patch has already been published and can be applied immediately.

Generated by OpenCVE AI on May 25, 2026 at 22:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the LibreDWG patch identified by commit 8f03865f37f5d4ffd616fef802acc980be54d300, which fixes the null pointer dereference in dwg_next_entity
  • Revoke local privileges for users who can introduce arbitrary DWG files into the application, or isolate the DWG processing component in a sandboxed environment
  • Implement a pre‑processing filter that validates DWG file integrity before handing it to LibreDWG, or replace the library with a vetted alternative until the vendor releases a complete fix

Generated by OpenCVE AI on May 25, 2026 at 22:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 25 May 2026 21:15:00 +0000

Type Values Removed Values Added
Description A security flaw has been discovered in GNU LibreDWG up to 0.14. This impacts the function dwg_next_entity of the file src/decode.c of the component DWG File Handler. The manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. The patch is identified as 8f03865f37f5d4ffd616fef802acc980be54d300. Upgrading the affected component is advised.
Title GNU LibreDWG DWG File decode.c dwg_next_entity null pointer dereference
First Time appeared Gnu
Gnu libredwg
Weaknesses CWE-404
CWE-476
CPEs cpe:2.3:a:gnu:libredwg:*:*:*:*:*:*:*:*
Vendors & Products Gnu
Gnu libredwg
References
Metrics cvssV2_0

{'score': 1.7, 'vector': 'AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C'}

cvssV3_0

{'score': 3.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C'}

cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Gnu Libredwg
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-26T12:49:51.105Z

Reserved: 2026-05-25T10:04:25.840Z

Link: CVE-2026-9503

cve-icon Vulnrichment

Updated: 2026-05-26T12:49:46.811Z

cve-icon NVD

Status : Received

Published: 2026-05-25T21:16:36.150

Modified: 2026-05-25T21:16:36.150

Link: CVE-2026-9503

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-25T23:00:10Z

Weaknesses