EUVD-2026-28949

🗓️ 10 May 2026 00:33:21Reported by EUVDType

Heap-based buffer overflow in the geospatial library grid file handler; affects up to 3.13.0dev-4, upgrade to release candidate one.

Reporter	Title	Published	Views	Family All 21
ATTACKERKB	CVE-2026-8213	9 May 202623:00	–	attackerkb
AlpineLinux	CVE-2026-8213	9 May 202623:00	–	alpinelinux
Circl	CVE-2026-8213	10 May 202601:14	–	circl
CNNVD	OSGeo gdal 缓冲区错误漏洞	9 May 202600:00	–	cnnvd
CVE	CVE-2026-8213	9 May 202623:00	–	cve
Cvelist	CVE-2026-8213 OSGeo gdal Grid File GDapi.c GDSDfldsrch heap-based overflow	9 May 202623:00	–	cvelist
Debian CVE	CVE-2026-8213	9 May 202623:00	–	debiancve
NVD	CVE-2026-8213	9 May 202623:16	–	nvd
OSV	BIT-GDAL-2026-8213 OSGeo gdal Grid File GDapi.c GDSDfldsrch heap-based overflow	20 May 202611:48	–	osv
OSV	DEBIAN-CVE-2026-8213	9 May 202623:16	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "77f26885-4e4c-308c-b579-fa2bf56332fa",
        "vendor": {
          "name": "OSGeo"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a01a0c47-c973-3edd-940e-37555bd8a0b8",
        "product": {
          "name": "gdal"
        },
        "product_version": ""
      },
      {
        "id": "c4670e55-f6ae-3d2e-bd3d-11b0f5f23420",
        "product": {
          "name": "gdal"
        },
        "product_version": "3.13.0dev-4"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/362430
vuldb	www.vuldb.com/vuln/362430/cti
vuldb	www.vuldb.com/submit/808128
github	www.github.com/OSGeo/gdal/issues/14399
github	www.github.com/biniamf/pocs/tree/main/gdal-gdsdfldsrch_oob-read
github	www.github.com/OSGeo/gdal/commit/3e04c0385630e4d42517046d9a4967dfccfeb7fd
github	www.github.com/OSGeo/gdal/releases/tag/v3.13.0RC1
github	www.github.com/OSGeo/gdal/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-8213

10 May 2026 00:33Current

5.4Medium risk

Vulners AI Score5.4

CVSS 44.8

CVSS 24.3

CVSS 3.15.3

CVSS 35.3

EPSS0.00008