{"vulnerability": "cve-2026-25104", "sightings": [{"uuid": "ceec9c52-c187-4f3a-a23d-61344fa34dc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25104", "type": "seen", "source": "https://infosec.place/objects/7f14540c-11cf-4ebf-b411-9ca39a0aa39c", "content": "New vulnerability report from Talos:MediaArea MediaInfoLib LXF parsing heap-based buffer overflow vulnerabilityhttps://talosintelligence.com/vulnerability_reports/TALOS-2026-2367CVE-2026-25104", "creation_timestamp": "2026-05-26T09:00:05.606226Z"}, {"uuid": "f0ad4592-a892-4591-b964-334b4cee2b54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25104", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116640057248371306", "content": "\ud83d\udea8 HIGH severity: CVE-2026-25104 impacts MediaArea MediaInfoLib 26.01. Integer underflow in LXF parsing can trigger heap-based buffer overflow. No patch yet \u2014 restrict untrusted LXF file parsing and monitor for updates. https://radar.offseq.com/threat/cve-2026-25104-cwe-191-integer-underflow-wrap-or-w-860fcfcf #OffSeq #Vulnerability #Infosec", "creation_timestamp": "2026-05-26T09:00:30.900125Z"}, {"uuid": "f276e63a-875e-40b2-8d83-dc937e74536d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25104", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmqmx5becr2v", "content": "MediaArea MediaInfoLib 26.01 hit by HIGH severity integer underflow in LXF parsing. Heap overflow risk \u2014 no patch yet. Avoid untrusted LXF files and stay alert for updates. https://radar.offseq.com/threat/cve-2026-25104-cwe-191-integer-underflow-wrap-or-w-860fcfcf #OffSeq #Vulnerability #Security", "creation_timestamp": "2026-05-26T09:00:32.831003Z"}, {"uuid": "737c5a25-58b6-416a-994e-2a8cee65ac03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25104", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmtv5fsqu426", "content": "@talosintelligence.com\nFour heap-based buffer overflow flaws in MediaArea MediaInfoLib allow arbitrary code execution via malicious files.\n-\nIOCs: CVE-2026-25104, CVE-2026-25713, CVE-2026-28764\n-\n#MediaArea #ThreatIntel #Vulnerability", "creation_timestamp": "2026-05-27T16:05:12.146616Z"}, {"uuid": "845a9287-f1bd-4923-b40f-c3bedc64bb87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25104", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmqvbkgmjv2c", "content": "CVE-2026-25104 - MediaArea MediaInfoLib LXF Parsing Heap Overflow\nCVE ID : CVE-2026-25104\n \n Published : May 26, 2026, 8:41 a.m. | 1\u00a0hour, 50\u00a0minutes ago\n \n Description : MediaArea MediaInfoLib LXF parsing heap-based buffer overflow vulnerability\n \n Severity: 0.0 | NA\n \n Visit...", "creation_timestamp": "2026-05-26T11:29:32.008319Z"}, {"uuid": "45d70211-f651-4565-b5a2-5c1d674e95a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25104", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmr5psbyuv2g", "content": "\ud83d\udfe0 CVE-2026-25104 - High (7.8)\n\nMediaArea MediaInfoLib LXF parsing heap-based buffer overflow vulnerability\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-25104/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-26T14:00:40.559794Z"}]}