Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-7067

Опубликовано: 04 июл. 2025
Источник: debian
EPSS Низкий

Описание

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
hdf5unfixedpackage

Примечания

  • https://github.com/HDFGroup/hdf5/issues/5577

  • https://github.com/HDFGroup/hdf5/pull/5815

  • https://github.com/HDFGroup/hdf5/commit/ea4b483d981b1c73ba2b8185c544565e4b05ae0e

  • HDF not covered by security support, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117722

EPSS

Процентиль: 10%
0.00035
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-7067

CVSS3: 3.3
ubuntu
7 месяцев назад

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

redhat логотип

CVE-2025-7067

CVSS3: 3.3
redhat
7 месяцев назад

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

nvd логотип

CVE-2025-7067

CVSS3: 3.3
nvd
7 месяцев назад

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

msrc логотип

CVE-2025-7067

CVSS3: 3.3
msrc
5 месяцев назад

HDF5 H5FScache.c H5FS__sinfo_serialize_node_cb heap-based overflow

github логотип

GHSA-rm7r-cf82-3c9w

CVSS3: 3.3
github
7 месяцев назад

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_serialize_node_cb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 10%
0.00035
Низкий