RawTherapee CVE-2026-24808
Lifecycle Timeline
2DescriptionCVE.org
Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc.
This issue affects RawTherapee: through 5.11.
AnalysisAI
Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc.
Technical ContextAI
Classified as CWE-190 (Integer Overflow or Wraparound). Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc.
This issue affects RawTherapee: through 5.11.
Affected ProductsAI
Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules)
RemediationAI
Monitor vendor advisories for a patch.
Same weakness CWE-190 – Integer Overflow or Wraparound
View allSame technique Integer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today