{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-26200", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-02-11T19:56:24.813Z", "datePublished": "2026-02-19T19:19:10.512Z", "dateUpdated": "2026-02-19T21:23:04.319Z"}, "containers": {"cna": {"title": "HDF5 Affected by H5T__conv_struct_opt Heap Buffer Overflow", "problemTypes": [{"descriptions": [{"cweId": "CWE-122", "lang": "en", "description": "CWE-122: Heap-based Buffer Overflow", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/HDFGroup/hdf5/security/advisories/GHSA-5p2m-j456-9mr2", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/HDFGroup/hdf5/security/advisories/GHSA-5p2m-j456-9mr2"}], "affected": [{"vendor": "HDFGroup", "product": "hdf5", "versions": [{"version": "< 1.14.4-2", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-02-19T19:19:10.512Z"}, "descriptions": [{"lang": "en", "value": "HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an `h5` file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on the practical exploitability of the heap overflow against modern operating systems. Real-world exploitability of this issue in terms of remote-code execution is currently unknown. Version 1.14.4-2 fixes the issue."}], "source": {"advisory": "GHSA-5p2m-j456-9mr2", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-19T21:16:38.054988Z", "id": "CVE-2026-26200", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-19T21:23:04.319Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-26200", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-19T21:16:38.054988Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-19T21:16:39.592Z"}}], "cna": {"title": "HDF5 Affected by H5T__conv_struct_opt Heap Buffer Overflow", "source": {"advisory": "GHSA-5p2m-j456-9mr2", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "HDFGroup", "product": "hdf5", "versions": [{"status": "affected", "version": "< 1.14.4-2"}]}], "references": [{"url": "https://github.com/HDFGroup/hdf5/security/advisories/GHSA-5p2m-j456-9mr2", "name": "https://github.com/HDFGroup/hdf5/security/advisories/GHSA-5p2m-j456-9mr2", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an `h5` file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on the practical exploitability of the heap overflow against modern operating systems. Real-world exploitability of this issue in terms of remote-code execution is currently unknown. Version 1.14.4-2 fixes the issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-122", "description": "CWE-122: Heap-based Buffer Overflow"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-02-19T19:19:10.512Z"}}}, "cveMetadata": {"cveId": "CVE-2026-26200", "state": "PUBLISHED", "dateUpdated": "2026-02-19T21:23:04.319Z", "dateReserved": "2026-02-11T19:56:24.813Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-02-19T19:19:10.512Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hdfgroup:hdf5:*:*:*:*:*:*:*:*", "matchCriteriaId": "75A3E09A-12A9-4186-9CA7-F34D0D169F17", "versionEndExcluding": "1.14.4.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an `h5` file parsed by HDF5 can trigger a write-based heap buffer overflow condition. This can lead to a denial-of-service condition, and potentially further issues such as remote code execution depending on the practical exploitability of the heap overflow against modern operating systems. Real-world exploitability of this issue in terms of remote-code execution is currently unknown. Version 1.14.4-2 fixes the issue."}], "id": "CVE-2026-26200", "lastModified": "2026-02-20T20:14:37.683", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-02-19T20:25:42.610", "references": [{"source": "security-advisories@github.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/HDFGroup/hdf5/security/advisories/GHSA-5p2m-j456-9mr2"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-122"}], "source": "security-advisories@github.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "hdf5: HDF5: Denial of Service due to heap buffer overflow when parsing a crafted h5 file", "id": "2441088", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441088"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-131", "details": ["No description is available for this CVE."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2026-26200", "package_state": [{"cpe": "cpe:/a:redhat:enterprise_linux_ai:3", "fix_state": "Affected", "package_name": "hdf5", "product_name": "Red Hat Enterprise Linux AI (RHEL AI) 3"}], "public_date": "2026-02-19T19:19:10Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-26200\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-26200\nhttps://github.com/HDFGroup/hdf5/security/advisories/GHSA-5p2m-j456-9mr2"], "threat_severity": "Important"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.14.4-2)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "hdf5", "source": "cna", "vendor": "HDFGroup"}, "product": "hdf5", "vendor": "hdfgroup"}], "analysis": {"en": {"generated_at": "2026-04-18T11:45:12.863168+00:00", "value": {"mitigation_remediation": ["Upgrade HDF5 to version 1.14.4-2 or later.", "If an immediate upgrade is not available, implement rigorous input validation to reject or sanitize malformed HDF5 files before they reach the library.", "Enforce strict access controls so that only trusted users or processes can provide HDF5 files to the application."], "summary": {"action": "Patch", "impact": "Denial of Service with possible remote code execution"}, "threat_synthesis": {"affected_systems": "The vulnerability affects all installations of the HDFGroup HDF5 library older than version 1.14.4-2. Any system that processes untrusted HDF5 files with this library is at risk.", "description_and_impact": "A malformed HDF5 file can trigger a write\u2011based heap buffer overflow in the H5T__conv_struct_opt conversion routine. The flaw may cause a denial of service, and depending on the target operating system it could potentially enable remote code execution. The weakness is catalogued as a buffer overflow (CWE-122), erroneous buffer size handling (CWE-131), and an out\u2011of\u2011bounds write (CWE-787).", "risk_and_exploitability": "The CVSS score of 7.8 signals a high severity issue, while the EPSS score of less than 1\u202f% indicates a very low probability of real\u2011world exploitation. The flaw is not catalogued in the CISA KEV list. An attacker must supply or force the processing of a malicious .h5 file, giving them local or remote access depending on how the library is used in the application. If the operating system can be manipulated via the overflow, remote code execution may be achieved; however, this remains speculative at present."}}}}, "created": "2026-02-20T10:05:49.696180+00:00", "updated": "2026-04-18T11:45:44.602353+00:00", "vendors": ["hdfgroup", "hdfgroup$PRODUCT$hdf5"]}