Krita

Krita is a widely-used open-source digital painting and illustration software. This high-severity vulnerability (CVSS 7.8) requires local access and user interaction to exploit, but once triggered grants an attacker high-level permissions to compromise confidentiality, integrity, and availability of the affected system. Security teams should monitor for patches from Krita's June 2026 deadline and advise users to avoid opening untrusted files or running the application from suspicious sources until the fix is available.