CVE-2026-22020
published 2026-04-23CVE-2026-22020: A vulnerability, which was classified as problematic, was found in libpng. Affected by this vulnerability is an unknown functionality. The manipulation results…
low7.1
A vulnerability, which was classified as problematic, was found in libpng. Affected by this vulnerability is an unknown functionality. The manipulation results in privilege escalation.
This vulnerability is reported as CVE-2026-22020. The attacker must have access to the local network to execute the attack. No exploit exists.
You should upgrade the affected component.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| boost | boost | — | — |
| libpng | libpng | — | — |
| mozilla | firefox | — | — |
| mozilla | thunderbird | — | — |