CVE-2026-2705

Source
https://cve.org/CVERecord?id=CVE-2026-2705
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-2705.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-2705
Aliases
Downstream
Related
Published
2026-02-19T07:17:49.990Z
Modified
2026-07-03T18:29:30.047092588Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability was detected in Open Babel up to 3.1.1. The impacted element is the function OBAtom::SetFormalCharge in the library include/openbabel/atom.h of the component MOL2 File Handler. The manipulation results in out-of-bounds read. It is possible to launch the attack remotely. The exploit is now public and may be used. The patch is identified as e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a. A patch should be applied to remediate this issue. The project was informed of the problem early through an issue report but has not responded yet.

References

Affected packages

Git / github.com/VedantMadane/openbabel

Affected ranges

Type
GIT
Repo
https://github.com/VedantMadane/openbabel
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
Database specific
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.1.1"
        }
    ]
}
Type
GIT
Repo
https://github.com/vedantmadane/openbabel
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

Other
openbabel-3-0-0
openbabel-3-0-0a1
openbabel-3-0-0a2
openbabel-3-1-0
openbabel-3-1-1

Database specific

vanir_signatures
[
    {
        "id": "CVE-2026-2705-01bc6dd8",
        "target": {
            "function": "MOL2Format::ReadMolecule",
            "file": "src/formats/mol2format.cpp"
        },
        "signature_version": "v1",
        "source": "https://github.com/vedantmadane/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a",
        "signature_type": "Function",
        "digest": {
            "function_hash": "30010962304116138080607436319469699538",
            "length": 8741.0
        },
        "deprecated": false
    },
    {
        "id": "CVE-2026-2705-0f76489d",
        "target": {
            "file": "src/formats/xml/cdxmlformat.cpp"
        },
        "signature_version": "v1",
        "source": "https://github.com/vedantmadane/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "217684272962877016414138833642465327871",
                "281597259995795846860484565484922236444",
                "67944802873645976870685274386029446693",
                "284286721701357702013437237273380090033",
                "242538309816058351042879703787182903972"
            ]
        },
        "deprecated": false
    },
    {
        "id": "CVE-2026-2705-33bca003",
        "target": {
            "function": "transform3d::DescribeAsString",
            "file": "src/math/transform3d.cpp"
        },
        "signature_version": "v1",
        "source": "https://github.com/vedantmadane/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a",
        "signature_type": "Function",
        "digest": {
            "function_hash": "119405193706058877749533351361322555021",
            "length": 1251.0
        },
        "deprecated": false
    },
    {
        "id": "CVE-2026-2705-a7c7b4f1",
        "target": {
            "file": "src/formats/mol2format.cpp"
        },
        "signature_version": "v1",
        "source": "https://github.com/vedantmadane/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "74714072063425806463116978712476486227",
                "26720173946644870887389989496423085704",
                "17720890902694951893861370958398576869",
                "241071117686927028701713811667404671016",
                "310400835440742988261621149033241726729",
                "223347280846511975360235714746911352592",
                "113071542473268934638868109943538653392"
            ],
            "threshold": 0.9
        },
        "deprecated": false
    },
    {
        "id": "CVE-2026-2705-b63644bb",
        "target": {
            "file": "src/math/transform3d.cpp"
        },
        "signature_version": "v1",
        "source": "https://github.com/vedantmadane/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "126791517391950924350933049496851609362",
                "273447677231502680745093624288136141499",
                "122020157048298215120106090724374946668",
                "106789864566273743879341108317849902974",
                "40275149034654090481755797826856792854"
            ]
        },
        "deprecated": false
    },
    {
        "id": "CVE-2026-2705-f94e2ea9",
        "target": {
            "function": "ChemDrawXMLFormat::EndElement",
            "file": "src/formats/xml/cdxmlformat.cpp"
        },
        "signature_version": "v1",
        "source": "https://github.com/vedantmadane/openbabel/commit/e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a",
        "signature_type": "Function",
        "digest": {
            "function_hash": "76514931888117891657624299142639965215",
            "length": 650.0
        },
        "deprecated": false
    }
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-2705.json"
vanir_signatures_modified
"2026-04-12T20:21:43Z"