CVE-2026-32845

HIGH 8.4

jkuhlmann / cgltf <= 1.15 Sparse Accessor Validation Integer Overflow

CVSS Score

8.4

EPSS Score

0.0%

EPSS Percentile

4th

cgltf version 1.15 and prior contain an integer overflow vulnerability in the cgltf_validate() function when validating sparse accessors that allows attackers to trigger out-of-bounds reads by supplying crafted glTF/GLB input files with attacker-controlled size values. Attackers can exploit unchecked arithmetic operations in sparse accessor validation to cause heap buffer over-reads in cgltf_calc_index_bound(), resulting in denial of service crashes and potential memory disclosure.

CWE	CWE-190
Vendor	jkuhlmann
Product	cgltf
Published	Mar 23, 2026
Last Updated	Mar 31, 2026

Stay Ahead of the Next One

Get instant alerts for jkuhlmann cgltf

Be the first to know when new high vulnerabilities affecting jkuhlmann cgltf are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

jkuhlmann / cgltf

0 ≤ 1.15.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/jkuhlmann/cgltf/issues/287 vulncheck.com: https://www.vulncheck.com/advisories/jkuhlmann-cgltf-sparse-accessor-validation-integer-overflow

Credits

Ana Kapulica