CVE-2026-8213 | OSGeo gdal up to 3.13.0dev-4 Grid File GDapi.c GDSDfldsrch heap-based overflow (Issue 14399)

A vulnerability marked as critical has been reported in OSGeo gdal up to 3.13.0dev-4. Affected by this issue is the function GDSDfldsrch of the file frmts/hdf4/hdf-eos/GDapi.c of the component Grid File Handler. The manipulation leads to heap-based buffer overflow.

This vulnerability is traded as CVE-2026-8213. An attack has to be approached locally. Furthermore, there is an exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More