CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-2921

highcovered by 1 sourcefirst seen 2026-07-10
A remote, anonymous attacker can exploit multiple vulnerabilities in GStreamer to cause a denial-of-service state, perform memory corruption, and potentially execute arbitrary code.

CSIRTS triage

What
Multiple vulnerabilities can be exploited by a remote, anonymous attacker to cause a denial-of-service state, perform memory corruption, and potentially execute arbitrary code.
Who is affected
Deployments of GStreamer are affected.
Urgency
Remediation is high urgency due to the potential for arbitrary code execution.
Action
Update to the latest version of GStreamer.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-2921

Get an email if CVE-2026-2921 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-2921

CVE.org record

Embed the live status

CVE-2026-2921 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-2921 status](https://www.csirts.com/badge/CVE-2026-2921)](https://www.csirts.com/cve/CVE-2026-2921)