Cyber Resilience

CVE-2026-58014

HighPublic PoC

Published: 30 June 2026

Published
30 June 2026
Modified
01 July 2026
KEV Added
Patch
CVSS Score v3.1 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
EPSS Score 0.0029 21.0th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-58014 is a high-severity Off-by-one Error (CWE-193) vulnerability in Redhat Enterprise Linux. Its CVSS base score is 7.3 (High).

Operationally, ranked at the 21.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

EU & UK References

Vulnerability details

A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an out-of-bounds access of 1 byte or a…

more

denial of service when the out-of-bounds access crosses a page boundary.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

Insufficient information to map techniques.
Confidence: LOW · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-42015Shared CWE-193
CVE-2025-54349Shared CWE-193
CVE-2021-23017Shared CWE-193
CVE-2021-3156Shared CWE-193
CVE-2024-10442Shared CWE-193
CVE-2025-47711Shared CWE-193
CVE-2026-7572Shared CWE-193
CVE-2022-25051Shared CWE-193
CVE-2022-47517Shared CWE-193
CVE-2022-24988Shared CWE-193

Affected Assets

gnome
glib
≤ 2.88.1
redhat
enterprise linux
10.0, 6.0, 7.0, 8.0, 9.0

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References