CVE-2026-52721EPSS p1.4%

CVE-2026-52721CVE-2026-52721

Description

Multiple out-of-bounds read vulnerabilities were found in GStreamer's pcapparse element. Malformed PCAP records can trigger reads beyond buffer boundaries during IPv4/TCP header parsing. This element is primarily used in debugging pipelines, limiting real-world exposure. A local attacker could trick a user into processing a specially crafted PCAP file, potentially leading to a crash or information disclosure.

Scoring

CVSS 5.3 ()
VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:H
EPSS0.11% probability of exploitation · percentile 1.4% · 2026-06-18T12:00:27Z
Last modified2026-06-15
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.