CVE-2026-12892
MEDIUM EPSS 2.5%
Published Jun 23, 20266d ago · Modified Jun 24, 20265d ago
4.4 CVSS 3.1
Published Jun 23, 2026 6d ago
Last Modified Jun 24, 2026 5d ago
Description
A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H.264 video file containing malformed MVC or SVC extension slice NAL units, a 1-byte heap out-of-bounds read can occur during parsing. This happens when the parser attempts to check slice boundary information without first verifying that the NAL unit contains enough data beyond the extension header. An attacker could exploit this by tricking a user into opening a malicious H.264 video file, potentially causing the application to crash or leak a single byte of heap memory.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality Low
Integrity None
Availability Low
Threat Intelligence
EPSS Exploit Probability
2.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-125 Out-of-bounds Read Memory Safety
References 3
- access.redhat.com https://access.redhat.com/security/cve/CVE-2026-12892
- bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2491321
- gitlab.freedesktop.org https://gitlab.freedesktop.org/gstreamer/gstreamer/-/work_items/5108
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.