Gdal vulnerabilities
2 known vulnerabilities affecting gdal/gdal.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2026-49014P3HIGHCVSS 7.8≥ 3.1.0, ≤ 3.13.02026-05-27
CVE-2026-49014 [HIGH] CWE-121 CVE-2026-49014: In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution v
In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry attribute in a crafted NetCDF file. This achieves arbitrary
nvd
CVE-2005-3581P4HIGHCVSS 7.2v1.2.5v1.2.5_r1+5 more2005-11-16
CVE-2005-3581 [HIGH] CVE-2005-3581: GDAL before 1.3.0-r1 allows local users in the portage group to increase privileges via a shared obj
GDAL before 1.3.0-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime.
nvd