Out-of-bounds Read in Tildearrow Furnace

CVE-2026-4732

Out-of-bounds Read vulnerability in tildearrow furnace (‎extern/libsndfile-modified/src modules). This vulnerability is associated with program files flac.C‎. This issue affects furnace: before 0.7.

Vulnerability class: Buffer Overflow

EPSS: 0.000 (6.2th percentile) — read the EPSS interpretation.

Affected products

Tildearrow Furnace — versions 0

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

cve_disclosure@tech.gov.sg (patch)