CVE-2026-25104
BaseFortify
Publication date: 2026-05-26
Last updated on: 2026-05-26
Assigner: Talos
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| mediaarea | mediainfolib | 26.01 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-191 | The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a heap-based buffer overflow in the LXF parsing functionality of MediaInfoLib version 26.01. It occurs when the software tries to merge two audio channels into one during the parsing of a specially crafted .lxf file.
A copy-paste bug causes both audio channels to point to the same buffer, which leads to incorrect data handling. Specifically, a variable called Minimum, which tracks the minimum audio bytes to merge, can underflow due to user-controlled input. This underflow causes an infinite loop and eventually a heap buffer overflow.
The overflow can overwrite critical memory, including the BitDepth variable, allowing an attacker to bypass crash conditions and potentially execute arbitrary code remotely.
How can this vulnerability impact me? :
This vulnerability can have serious impacts including the potential for remote code execution. An attacker can exploit the heap buffer overflow to overwrite critical memory and execute arbitrary code on the affected system.
Because the vulnerability can be triggered by a specially crafted .lxf file, simply processing or opening such a file with the vulnerable MediaInfoLib version could compromise the system.
The CVSSv3 score of 7.8 indicates a high severity level, meaning the impact on confidentiality, integrity, and availability is significant.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability is triggered by processing a specially crafted .lxf file with MediaInfoLib version 26.01. Detection involves monitoring for attempts to parse suspicious or malformed .lxf files that could exploit the heap-based buffer overflow.
Since the issue arises during the parsing of .lxf files, one approach is to scan files for unusual or malformed .lxf content before processing.
There are no specific commands provided in the available resources to detect this vulnerability directly on a system or network.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, avoid processing untrusted or suspicious .lxf files with MediaInfoLib version 26.01.
Since the vulnerability allows arbitrary code execution via crafted .lxf files, restricting or validating input files before parsing is critical.
Applying any available patches or updates from the vendor that address this heap-based buffer overflow is recommended once they become available.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The provided information does not specify how this vulnerability impacts compliance with common standards and regulations such as GDPR or HIPAA.