CVE-2026-24807

CVSS v4.0

5.3

Medium

Vector

AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:M/U:Amber

Name of the Vulnerable Software and Affected Versions liuyueyi quick-media (affected versions not specified)

Description An improper verification of cryptographic signature exists within the plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/util modules of the software. The issue is associated with the SeekableOutputStream.Java program files.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Verification of Cryptographic Signature

Integer Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-347CWE-190CWE-120

Related Identifiers

CVE-2026-24807

GHSA-23F4-HFMQ-94MJ

Affected Products

Apache Batik

Liuyueyi Quick-Media

CVE-2026-24807

Weakness Enumeration

Related Identifiers

Affected Products

References · 9