Description
A flaw has been found in pdeljanov Symphonia up to 0.6.0. This vulnerability affects unknown code of the component Metadata Handler. This manipulation causes denial of service. The attack needs to be launched locally. The exploit has been published and may be used. The pull request to fix this issue awaits acceptance.
Problem types
Product status
0.2
0.3
0.4
0.5
0.6.0
Timeline
| 2026-07-09: | Advisory disclosed |
| 2026-07-09: | VulDB entry created |
| 2026-07-09: | VulDB entry last update |
Credits
Zyz3366 (VulDB User)
VulDB CNA Team
References
vuldb.com/vuln/377216 (VDB-377216 | pdeljanov Symphonia Metadata denial of service)
vuldb.com/vuln/377216/cti (VDB-377216 | CTI Indicators (IOB, IOC))
vuldb.com/cve/CVE-2026-15276 (CVE-2026-15276 | CVE Analysis and Report)
vuldb.com/submit/852458 (Submit #852458 | Symphonia symphonia-metadata <= 0.6.0 Denial of Service)
github.com/pdeljanov/Symphonia/issues/508
github.com/pdeljanov/Symphonia/pull/514
github.com/pdeljanov/Symphonia/