CVE-2026-2705
Out-of-Bounds Read in Open Babel MOL2 Handler Enables Remote Attack
Publication date: 2026-02-19
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| openbabel | open_babel | to 3.1.1 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-125 | The product reads data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-2705 is a vulnerability in Open Babel versions up to 3.1.1, specifically in the MOL2 File Handler component within the function OBAtom::SetFormalCharge. The issue arises when parsing malformed MOL2 files, where the code does not properly validate pointers before use, leading to a NULL pointer dereference or out-of-bounds read.
This vulnerability causes the program to perform an out-of-bounds memory access or a segmentation fault due to dereferencing a NULL pointer, which can crash the application. The problem occurs because the function attempts to set the formal charge on an atom pointer that may be NULL due to invalid or mismatched atom data in the input file.
The vulnerability can be triggered remotely by supplying a crafted MOL2 file, and an exploit is publicly available demonstrating how to cause the crash.
How can this vulnerability impact me? :
This vulnerability can lead to application crashes (segmentation faults) when processing malformed MOL2 files, resulting in denial of service or instability of the Open Babel software.
Since the attack can be launched remotely without authentication, it poses a risk of disrupting services or workflows that rely on Open Babel for molecular file processing.
The impact primarily affects software availability, potentially causing interruptions in automated or user-driven chemical data processing tasks.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by attempting to process malformed MOL2 files with the Open Babel tool and observing if a crash or segmentation fault occurs.
A practical detection method involves building Open Babel with AddressSanitizer (ASan) enabled and running the obabel command-line tool to convert a crafted malformed MOL2 file, such as the repro.mol2 file available in the public exploit repository.
Example command to reproduce the crash (assuming Open Babel is built with ASan):
- obabel repro.mol2 -O output.sdf
If the tool crashes with a segmentation fault related to OBAtom::SetFormalCharge, it indicates the presence of the vulnerability.
What immediate steps should I take to mitigate this vulnerability?
Currently, there is no official patch or response from the Open Babel project to address this vulnerability.
Immediate mitigation steps include:
- Avoid processing untrusted or malformed MOL2 files with Open Babel versions up to 3.1.1.
- Consider replacing or upgrading the affected component with an alternative product or a future patched version once available.
- Implement input validation or filtering to prevent malformed MOL2 files from being processed.
These steps help reduce the risk of exploitation leading to crashes or denial of service.