CVE-2026-3394

Name of the Vulnerable Software and Affected Versions jarikomppa soloud versions up to 20200207

Description A flaw exists in the SoLoud library, specifically within the WAV File Parser component. The SoLoud::Wav::loadwav function in the src/audiosource/wav/soloud wav.cpp file is susceptible to memory corruption when processing manipulated WAV files. The issue can be triggered locally. The exploit is publicly available, and the project maintainers have been notified but have not yet responded.

Recommendations Versions prior to 20200207 should be updated. As a temporary workaround, consider restricting access to the SoLoud::Wav::loadwav function until a patch is available.