CVE-2026-9502

🗓️ 25 May 2026 20:45:10Reported by VulDBType

CVE-2026-9502: LibreDWG Dwgread decompress_R2004_section heap overflow; local exploit; patch id e501cb9926c1e9a07a0d1cc997f3e69e9be801c9.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-9502	25 May 202620:45	–	attackerkb
CNNVD	GNU LibreDWG 安全漏洞	25 May 202600:00	–	cnnvd
Cvelist	CVE-2026-9502 GNU LibreDWG Dwgread Utility decode.c decompress_R2004_section heap-based overflow	25 May 202620:45	–	cvelist
EUVD	EUVD-2026-31740	25 May 202620:45	–	euvd
NVD	CVE-2026-9502	25 May 202621:16	–	nvd
Positive Technologies	PT-2026-43130	25 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-9502	5 Jun 202619:47	–	redhatcve
SUSE CVE	SUSE CVE-2026-9502	27 May 202612:59	–	susecve
Vulnrichment	CVE-2026-9502 GNU LibreDWG Dwgread Utility decode.c decompress_R2004_section heap-based overflow	25 May 202620:45	–	vulnrichment

Vulners

Node

gnu libredwgMatch0.1

gnu libredwgMatch0.2

gnu libredwgMatch0.3

gnu libredwgMatch0.4

gnu libredwgMatch0.5

gnu libredwgMatch0.6

gnu libredwgMatch0.7

gnu libredwgMatch0.8

gnu libredwgMatch0.9

gnu libredwgMatch0.10

gnu libredwgMatch0.11

gnu libredwgMatch0.12

gnu libredwgMatch0.13

gnu libredwgMatch0.14

[
  {
    "vendor": "GNU",
    "product": "LibreDWG",
    "versions": [
      {
        "version": "0.1",
        "status": "affected"
      },
      {
        "version": "0.2",
        "status": "affected"
      },
      {
        "version": "0.3",
        "status": "affected"
      },
      {
        "version": "0.4",
        "status": "affected"
      },
      {
        "version": "0.5",
        "status": "affected"
      },
      {
        "version": "0.6",
        "status": "affected"
      },
      {
        "version": "0.7",
        "status": "affected"
      },
      {
        "version": "0.8",
        "status": "affected"
      },
      {
        "version": "0.9",
        "status": "affected"
      },
      {
        "version": "0.10",
        "status": "affected"
      },
      {
        "version": "0.11",
        "status": "affected"
      },
      {
        "version": "0.12",
        "status": "affected"
      },
      {
        "version": "0.13",
        "status": "affected"
      },
      {
        "version": "0.14",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:gnu:libredwg:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "Dwgread Utility"
    ]
  }
]

Source	Link
github	www.github.com/LibreDWG/libredwg/issues/1243
github	www.github.com/LibreDWG/libredwg/commit/e501cb9926c1e9a07a0d1cc997f3e69e9be801c9
github	www.github.com/HackC0der/CVE-Repos/blob/main/libredwg/libredwg_6d6a339_heap_overflow_decompress_R2004_section.dwg
vuldb	www.vuldb.com/vuln/365484/cti
gnu	www.gnu.org/
vuldb	www.vuldb.com/submit/814259
vuldb	www.vuldb.com/vuln/365484

26 May 2026 19:54Current

6Medium risk

Vulners AI Score6

CVSS 24.3

CVSS 44.8

CVSS 3.15.3

CVSS 35.3

EPSS0.00154

SSVC