PatchSiren

HDFGroup CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH HDFGroup CVE published 2026-02-19

CVE-2026-26200

CVE-2026-26200 is a high-severity vulnerability in HDF5, a data management software. An attacker can exploit this vulnerability to trigger a write-based heap buffer overflow condition, potentially leading to a denial-of-service condition and remote code execution. The vulnerability is fixed in version 1.14.4-2. HDF5 versions prior to 1.14.4-2 are affected. The Common Vulnerability Scoring System (CVSS) sc [truncated]