Cyber Resilience

CVE-2026-2705

MediumPublic PoC

Published: 19 February 2026

Published
19 February 2026
Modified
01 March 2026
KEV Added
Patch
CVSS Score v4 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0070 48.4th percentile
Risk Priority 35 floored blend · peak EPSS

Summary

CVE-2026-2705 is a medium-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Openbabel Open Babel. Its CVSS base score is 5.3 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Malicious File (T1204.002); ranked at the 48.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2026-2705 is an out-of-bounds read vulnerability in Open Babel versions up to 3.1.1. The flaw affects the OBAtom::SetFormalCharge function in the include/openbabel/atom.h library file, part of the MOL2 File Handler component. It is classified under CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) and CWE-125 (Out-of-bounds Read), with a CVSS v3.1 base score of 4.3 (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L).

The vulnerability enables remote exploitation by unauthenticated attackers requiring no privileges, though it demands user interaction and features low attack complexity. Attackers can trigger the out-of-bounds read by supplying a malicious MOL2 file, potentially leading to a denial-of-service condition due to the low availability impact.

Advisories recommend applying the patch at commit e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a to remediate the issue. The Open Babel project was informed early via GitHub issue #2848, with a related pull request #2862, though it has not yet responded. A proof-of-concept exploit is publicly available, and exploitation may occur as it is now public.

EU & UK References

Vulnerability details

A vulnerability was detected in Open Babel up to 3.1.1. The impacted element is the function OBAtom::SetFormalCharge in the library include/openbabel/atom.h of the component MOL2 File Handler. The manipulation results in out-of-bounds read. It is possible to launch the attack…

more

remotely. The exploit is now public and may be used. The patch is identified as e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a. A patch should be applied to remediate this issue. The project was informed of the problem early through an issue report but has not responded yet.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1204.002 Malicious File Execution
An adversary may rely upon a user opening a malicious file in order to gain execution.
T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Malicious MOL2 file requires user execution (T1204.002) to trigger OOB read; results in application DoS via exploitation (T1499.004).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-2704Same product: Openbabel Open Babel
CVE-2025-2752Shared CWE-119, CWE-125
CVE-2025-70308Shared CWE-125
CVE-2026-2659Shared CWE-119, CWE-125
CVE-2026-33905Shared CWE-125
CVE-2026-3663Shared CWE-119, CWE-125
CVE-2026-3386Shared CWE-119, CWE-125
CVE-2026-3731Shared CWE-119, CWE-125
CVE-2026-5314Shared CWE-119, CWE-125
CVE-2025-2753Shared CWE-119, CWE-125

Affected Assets

openbabel
open babel
≤ 3.1.1

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires applying the published patch (commit e23a224b) to eliminate the out-of-bounds read in OBAtom::SetFormalCharge before a malicious MOL2 file can be processed.

prevent

Mandates validation of all input data, which would enforce bounds checking on MOL2 file contents and block the CWE-119/125 flaw at the point of file ingestion.

prevent

Requires hardware or software memory protection mechanisms that can detect or contain the out-of-bounds read triggered by a crafted MOL2 file, limiting the resulting denial-of-service.

References