Out-of-Bounds Read Vulnerability in libgphoto2 Affecting Camera Access by gPhoto
CVE-2026-40338

5.2MEDIUM

Key Information:

Vendor: Gphoto
Status: Libgphoto2
Vendor: CVE Published:; 17 April 2026

What is CVE-2026-40338?

An out-of-bounds read vulnerability exists in libgphoto2, a library used for camera access and control. In versions up to and including 2.5.33, the function ptp_unpack_Sony_DPD() fails to validate the buffer size before reading a 2-byte enumeration count. This omission could potentially lead to security concerns, allowing unauthorized access to memory regions. The issue has been addressed in a commit that adds the necessary checks to ensure buffer safety.

Affected Version(s)

libgphoto2 <= 2.5.33

References

https://github.com/gphoto/libgphoto2/security/advisories/...

x_refsource_CONFIRM

https://github.com/gphoto/libgphoto2/commit/3b9f9696be76a...

x_refsource_MISC

CVSS V3.1

Score:

5.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2026
Vulnerability Reserved
Apr 10, 2026

CVE-2026-40338 Data

JSON

Gphoto

What is CVE-2026-40338?

Affected Version(s)

References

CVSS V3.1

Timeline