CVE-2026-33147

HIGH

GMT <= 6.6.0 - Stack Buffer Overflow in gmt_remote_dataset_id

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-33147. PoCs published by redyank.

AI-analyzed exploit summary The repository contains a functional Python PoC exploiting a stack-based buffer overflow in the `gmt_remote_dataset_id` function of GMT via PyGMT. The exploit triggers the vulnerability by sending a crafted payload exceeding `PATH_MAX` bytes, leading to a crash or potential RCE.

Description

GMT is an open source collection of command-line tools for manipulating geographic and Cartesian data sets. In versions from 6.6.0 and prior, a stack-based buffer overflow vulnerability was identified in the gmt_remote_dataset_id function within src/gmt_remote.c. This issue occurs when a specially crafted long string is passed as a dataset identifier (e.g., via the which module), leading to a crash or potential arbitrary code execution. This issue has been patched via commit 0ad2b49.

Exploits (1)

nomisec WORKING POC

by redyank · poc

https://github.com/redyank/CVE-2026-33147

View Code ZIP pw:eip

The repository contains a functional Python PoC exploiting a stack-based buffer overflow in the `gmt_remote_dataset_id` function of GMT via PyGMT. The exploit triggers the vulnerability by sending a crafted payload exceeding `PATH_MAX` bytes, leading to a crash or potential RCE.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: GMT (Generic Mapping Tools) via PyGMT

No auth needed

Prerequisites: PyGMT installed · GMT library with vulnerable `gmt_remote_dataset_id` function

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Apr 09, 2026 Full analysis →

References (2)

Core 2

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/GenericMappingTools/gmt/security/advisories/GHSA-fqxx-62x7-9gwg

X_Refsource_Misc x_refsource_misc

https://github.com/GenericMappingTools/gmt/commit/0ad2b491470df82c9ec1139dcbd70502fa28a082

View Writeup ZIP pw:eip

Scores

CVSS v3 7.3

EPSS 0.0019

EPSS Percentile 8.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-121

Status published

Products (2)

generic-mapping-tools/gmt < 6.6.0

GenericMappingTools/gmt <= 6.6.0

Published Mar 20, 2026

Tracked Since Mar 21, 2026