GIMP

GIMP is a widely-used open-source image editing application, and this high-severity vulnerability (CVSS 7.8) can be exploited locally without authentication or user privileges through a malicious file that requires user interaction to trigger, potentially compromising confidentiality, integrity, and availability. Security teams should monitor for malicious GIMP project files or images circulating in the wild and ensure users understand the risks of opening untrusted files in the application until a patch is released by April 2026.