CVE-2026-32845
HIGHjkuhlmann / cgltf <= 1.15 Sparse Accessor Validation Integer Overflow
Title source: cnaDescription
cgltf version 1.15 and prior contain an integer overflow vulnerability in the cgltf_validate() function when validating sparse accessors that allows attackers to trigger out-of-bounds reads by supplying crafted glTF/GLB input files with attacker-controlled size values. Attackers can exploit unchecked arithmetic operations in sparse accessor validation to cause heap buffer over-reads in cgltf_calc_index_bound(), resulting in denial of service crashes and potential memory disclosure.
References (2)
Core 2
Core References
Issue Tracking, Mitigation issue-tracking
mitigation
https://github.com/jkuhlmann/cgltf/issues/287
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/jkuhlmann-cgltf-sparse-accessor-validation-integer-overflow
Scores
CVSS v3
8.4
EPSS
0.0013
EPSS Percentile
2.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-190
Status
published
Products (1)
jkuhlmann/cgltf
< 1.15.0
Published
Mar 23, 2026
Tracked Since
Mar 23, 2026