Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

OSGeo GDAL Improper Buffer Operation Vulnerability in Zlib Module

Vulnerability

Exploited

Patched

A vulnerability has been identified in OSGeo GDAL versions prior to 3.11.0, specifically within the Zlib module's contribution 'infback9'. This issue involves improper restriction of operations within the bounds of a memory buffer, potentially leading to memory-related vulnerabilities.

Impact

Exploitation of this vulnerability could lead to memory corruption issues, commonly associated with buffer overflow vulnerabilities, which may allow for arbitrary code execution or causing a denial-of-service condition.

Remediation

Users can upgrade to OSGeo GDAL version 3.11.0 or later to address this vulnerability.

Added: Mar 24, 2026, 4:26 AM

Updated: Mar 24, 2026, 4:26 AM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

3.1

exploitability

6.4

remediation

7.7

relevance

4.6

threat

8.0

urgency

5.7

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

3.1

exploitability

6.4

remediation

7.7

relevance

4.6

threat

8.0

urgency

5.7

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

OSGeo GDAL Improper Buffer Operation Vulnerability in Zlib Module

Vulnerability

Impact

Remediation

Affected Products

OSGeo gdal

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating