Krita

Krita is a well-known open-source digital painting and illustration software application. This vulnerability has a high severity rating (7.8) and requires local access with user interaction to exploit, but once successful grants an attacker high-level permissions to compromise confidentiality, integrity, and availability of the system. Security teams should monitor for any unusual file access or execution behavior from Krita and ensure users update to patched versions once available, with a vendor deadline of April 3, 2026.