{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-9605","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2026-05-26T16:14:39.515Z","datePublished":"2026-05-26T23:15:20.385Z","dateUpdated":"2026-05-28T13:52:18.548Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2026-05-26T23:15:20.385Z"},"title":"GNU libredwg Dwgbmp Utility bits.c bit_read_RC heap-based overflow","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-122","lang":"en","description":"Heap-based Buffer Overflow"}]},{"descriptions":[{"type":"CWE","cweId":"CWE-119","lang":"en","description":"Memory Corruption"}]}],"affected":[{"vendor":"GNU","product":"libredwg","versions":[{"version":"0.13.4.8160","status":"affected"}],"cpes":["cpe:2.3:a:gnu:libredwg:*:*:*:*:*:*:*:*"],"modules":["Dwgbmp Utility"]}],"descriptions":[{"lang":"en","value":"A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bit_read_RC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used. Patch name: 8f03865f37f5d4ffd616fef802acc980be54d300. Applying a patch is the recommended action to fix this issue."}],"metrics":[{"cvssV4_0":{"version":"4.0","baseScore":6.9,"vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P","baseSeverity":"MEDIUM"}},{"cvssV3_1":{"version":"3.1","baseScore":7.3,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C","baseSeverity":"HIGH"}},{"cvssV3_0":{"version":"3.0","baseScore":7.3,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C","baseSeverity":"HIGH"}},{"cvssV2_0":{"version":"2.0","baseScore":7.5,"vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C"}}],"timeline":[{"time":"2026-05-26T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2026-05-26T02:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2026-05-26T18:20:07.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"r1ck9 (VulDB User)","type":"reporter"}],"references":[{"url":"https://vuldb.com/vuln/365678","name":"VDB-365678 | GNU libredwg Dwgbmp Utility bits.c bit_read_RC heap-based overflow","tags":["vdb-entry","technical-description"]},{"url":"https://vuldb.com/vuln/365678/cti","name":"VDB-365678 | CTI Indicators (IOB, IOC, IOA)","tags":["signature","permissions-required"]},{"url":"https://vuldb.com/submit/818197","name":"Submit #818197 | LibreDWG libredwg (including the dwgbmp utility) 0.13.4.8160 Buffer Overflow","tags":["third-party-advisory"]},{"url":"https://github.com/LibreDWG/libredwg/issues/1248","tags":["issue-tracking"]},{"url":"https://github.com/HackC0der/CVE-Repos/blob/main/libredwg/libredwg_6d6a339_heap_oob_write_read_2004_compressed_section.dwg","tags":["exploit"]},{"url":"https://github.com/LibreDWG/libredwg/commit/8f03865f37f5d4ffd616fef802acc980be54d300","tags":["patch"]},{"url":"https://www.gnu.org/","tags":["broken-link","product"]}],"tags":["x_open-source"]},"adp":[{"references":[{"url":"https://vuldb.com/submit/818197","tags":["exploit"]},{"url":"https://github.com/LibreDWG/libredwg/issues/1248","tags":["exploit"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-05-28T13:51:50.086261Z","id":"CVE-2026-9605","options":[{"Exploitation":"poc"},{"Automatable":"yes"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-05-28T13:52:18.548Z"}}]}}