Integer overflow in Insightsoftwareconsortium Itk

CVE-2026-4739

Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK (‎Modules/ThirdParty/Expat/src/expat modules).This issue affects ITK: before 2.7.1.

Vulnerability class: Integer Overflow

EPSS: 0.001 (19.8th percentile) — read the EPSS interpretation.

Affected products

Insightsoftwareconsortium Itk — versions 0

Weakness classification (CWE)

CWE-190 — Integer Overflow or Wraparound

References

cve_disclosure@tech.gov.sg (patch)