CyberRota
← Ana sayfaya dön

CVE-2026-10118

HIGH · CVSS 7.8 EPSS %0.25 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-01T17:16:39.500 · Çekilme zamanı: 2026-06-30T12:06:07.792871+00:00

CyberRota Yorumu

Bellek tüketimine neden olabilir. Uzaktan istismar edilebilir olabilir.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

Tespit Edilen Sinyaller
exploit arbitrary code execution code execution

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-10118
Severity
HIGH
CVSS
7.8
EPSS
%0.25

Orijinal NVD Açıklaması

A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the `tilingPatternFill` function. This overflow leads to an undersized heap memory allocation, allowing a subsequent out-of-bounds write. Successful exploitation could result in arbitrary code execution, information disclosure, or denial of service within the context of the application processing the PDF.