What the vulnerability does
01Description
Memory corruption while invoking remote procedure IOCTL calls.
CVSS base score
7.8/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Key dates
02Disclosure timeline
October 9, 2025
CVE published
February 26, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-11555 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
CVE-2023-27340 PDF-XChange Editor PNG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
CVE-2021-47775 YouTube Video Grabber 1.9.9.1 - Buffer Overflow (SEH)
CVE-2022-40654
CVE-2024-12695
