{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-24808", "assignerOrgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "state": "PUBLISHED", "assignerShortName": "GovTech CSG", "dateReserved": "2026-01-27T08:39:10.281Z", "datePublished": "2026-01-27T08:44:58.065Z", "dateUpdated": "2026-01-27T20:44:34.832Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://github.com/RawTherapee/RawTherapee", "defaultStatus": "affected", "modules": ["rtengine"], "product": "RawTherapee", "programFiles": ["dcraw.cc"], "vendor": "RawTherapee", "versions": [{"lessThanOrEqual": "5.11", "status": "affected", "version": "0", "versionType": "git"}]}], "credits": [{"lang": "en", "type": "reporter", "value": "TITAN Team (titancaproject@gmail.com)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules).<p> This vulnerability is associated with program files <tt>dcraw.Cc</tt>.</p><p>This issue affects RawTherapee: through 5.11.</p>"}], "value": "Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc.\n\nThis issue affects RawTherapee: through 5.11."}], "metrics": [{"cvssV4_0": {"Automatable": "YES", "Recovery": "USER", "Safety": "PRESENT", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 8.3, "baseSeverity": "HIGH", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "AMBER", "subAvailabilityImpact": "HIGH", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "HIGH", "userInteraction": "ACTIVE", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H/S:P/AU:Y/R:U/V:C/RE:M/U:Amber", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "MODERATE"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "shortName": "GovTech CSG", "dateUpdated": "2026-01-27T08:44:58.065Z"}, "references": [{"tags": ["patch"], "url": "https://github.com/RawTherapee/RawTherapee/pull/7359"}], "source": {"discovery": "UNKNOWN"}, "title": "A possible integer overflow vulnerability in RawTherapee/RawTherapee", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-27T20:44:25.901159Z", "id": "CVE-2026-24808", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-27T20:44:34.832Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-24808", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-27T20:44:25.901159Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-27T20:44:31.145Z"}}], "cna": {"title": "A possible integer overflow vulnerability in RawTherapee/RawTherapee", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "reporter", "value": "TITAN Team (titancaproject@gmail.com)"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "PRESENT", "version": "4.0", "Recovery": "USER", "baseScore": 8.3, "Automatable": "YES", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H/S:P/AU:Y/R:U/V:C/RE:M/U:Amber", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "AMBER", "userInteraction": "ACTIVE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnerabilityResponseEffort": "MODERATE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "RawTherapee", "modules": ["rtengine"], "product": "RawTherapee", "versions": [{"status": "affected", "version": "0", "versionType": "git", "lessThanOrEqual": "5.11"}], "programFiles": ["dcraw.cc"], "collectionURL": "https://github.com/RawTherapee/RawTherapee", "defaultStatus": "affected"}], "references": [{"url": "https://github.com/RawTherapee/RawTherapee/pull/7359", "tags": ["patch"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc.\n\nThis issue affects RawTherapee: through 5.11.", "supportingMedia": [{"type": "text/html", "value": "Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules).<p> This vulnerability is associated with program files <tt>dcraw.Cc</tt>.</p><p>This issue affects RawTherapee: through 5.11.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound"}]}], "providerMetadata": {"orgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "shortName": "GovTech CSG", "dateUpdated": "2026-01-27T08:44:58.065Z"}}}, "cveMetadata": {"cveId": "CVE-2026-24808", "state": "PUBLISHED", "dateUpdated": "2026-01-27T20:44:34.832Z", "dateReserved": "2026-01-27T08:39:10.281Z", "assignerOrgId": "1a37b84a-8e51-4525-b3d6-87e2fae01dbd", "datePublished": "2026-01-27T08:44:58.065Z", "assignerShortName": "GovTech CSG"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc.\n\nThis issue affects RawTherapee: through 5.11."}, {"lang": "es", "value": "Vulnerabilidad de desbordamiento de entero o ajuste en RawTherapee (m\u00f3dulos rtengine). Esta vulnerabilidad est\u00e1 asociada con los archivos de programa dcraw.Cc.\n\nEste problema afecta a RawTherapee: hasta la versi\u00f3n 5.11."}], "id": "CVE-2026-24808", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "YES", "Recovery": "USER", "Safety": "PRESENT", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.3, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "AMBER", "subAvailabilityImpact": "HIGH", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "HIGH", "userInteraction": "ACTIVE", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:Y/R:U/V:C/RE:M/U:Amber", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "MODERATE"}, "source": "cve_disclosure@tech.gov.sg", "type": "Secondary"}]}, "published": "2026-01-27T09:15:51.023", "references": [{"source": "cve_disclosure@tech.gov.sg", "url": "https://github.com/RawTherapee/RawTherapee/pull/7359"}], "sourceIdentifier": "cve_disclosure@tech.gov.sg", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-190"}], "source": "cve_disclosure@tech.gov.sg", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T02:23:45.949245+00:00", "value": {"mitigation_remediation": ["Upgrade RawTherapee to version 5.12 or later to obtain the vendor\u2011supplied fix.", "If an immediate upgrade is not possible, restrict RawTherapee to process RAW files only from trusted directories or temporarily disable raw\u2011image handling until a patch is available.", "When opening RAW images from untrusted or remote sources, scan the files or use sandboxing to ensure they are not malicious before processing them with the application."], "summary": {"action": "Patch", "impact": "Potential memory corruption leading to remote code execution or denial of service"}, "threat_synthesis": {"affected_systems": "RawTherapee, versions through 5.11 inclusive, are affected. No newer releases are listed as vulnerable.", "description_and_impact": "RawTherapee has an integer overflow or wraparound vulnerability in its rtengine modules, specifically involving files in dcraw.Cc. The flaw can result in a memory corruption that may allow an attacker to execute arbitrary code, overwrite data, or cause the application to crash. The impact threatens confidentiality, integrity, and availability of systems that use the affected software.", "risk_and_exploitability": "The CVSS score is 8.3, indicating high severity. The EPSS score is below 1%, implying a low likelihood of exploitation at this time. The vulnerability is not yet catalogued in the CISA KEV list. Exploitation would require an attacker to supply a crafted RAW image file processed by the application, potentially through local user interaction or remote file transfer if the user opens files from shared locations. The attack vector is inferred from the nature of the flaw and typical usage of RAW files."}}}}, "created": "2026-01-27T20:17:08.235665+00:00", "updated": "2026-04-18T02:30:15.864688+00:00", "vendors": ["rawtherapee", "rawtherapee$PRODUCT$rawtherapee"]}