THREATOPS
THREAT OPSThreat News › [NVD] CVE-2026-52719 (HIGH 7.1) — An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value from the bitstream without validating it against available data. A remote attacker could trick a user into opening a specially crafted

[NVD] CVE-2026-52719 (HIGH 7.1) — An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value from the bitstream without validating it against available data. A remote attacker could trick a user into opening a specially crafted

mednvdPublished 2026-06-15

CVE-2026-52719 CVSS: 7.1 HIGH Published: 2026-06-15T20:16:32.447

An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value from the bitstream without validating it against available data. A remote attacker could trick a user into opening a specially crafted JPEG file, causing downstream parsing to read beyond

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-52719