Cyber Resilience

CVE-2026-1767

MediumPublic PoC

Published: 16 June 2026

Published
16 June 2026
Modified
17 June 2026
KEV Added
Patch
CVSS Score v3.1 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H
EPSS Score 0.0025 15.7th percentile
Risk Priority 35 floored blend · peak EPSS

Summary

CVE-2026-1767 is a medium-severity Buffer Access with Incorrect Length Value (CWE-805) vulnerability in Redhat Enterprise Linux. Its CVSS base score is 5.6 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Malicious File (T1204.002); ranked at the 15.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

EU & UK References

Vulnerability details

A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This incorrect length…

more

calculation during the parsing of performer tags can lead to a read beyond the allocated buffer, potentially causing a Denial of Service (DoS) due to a crash or enabling information disclosure.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1204.002 Malicious File Execution
An adversary may rely upon a user opening a malicious file in order to gain execution.
Why these techniques?

Heap over-read in local MP3/ID3 parser directly enables DoS or info disclosure via crafted malicious file delivered to victim for processing.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

Affected Assets

gnome
localsearch
all versions
redhat
enterprise linux
10.0, 8.0, 9.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References