HIGH
GIMP
CVE published 2026-06-10
CVE-2026-2049
CVE-2026-2049 is a high-severity vulnerability in GIMP, a popular image editing software. The vulnerability is caused by a lack of proper validation of user-supplied data when parsing HDR files, leading to a heap-based buffer overflow. This allows remote attackers to execute arbitrary code on affected installations of GIMP, requiring user interaction to exploit.