Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-6269

Опубликовано: 19 июн. 2025
Источник: redhat
CVSS3: 5.3
EPSS Низкий

Описание

A vulnerability classified as critical was found in HDF5 up to 1.14.6. Affected by this vulnerability is the function H5C__reconstruct_cache_entry of the file H5Cimage.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

A vulnerability was found in the H5C__reconstruct_cache_entry function of the H5Cimage.c file in HDF5. Input manipulation can occur, which leads to a heap-based buffer overflow. Exploitation of this vulnerability requires local system access.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux AI (RHEL AI)hdf5Fix deferred
Red Hat Enterprise Linux AI 3.0 for RHEL 9hdf5FixedRHSA-2025:2373122.12.2025

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-119
Дефект:
CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=2373903hdf5: HDF5 heap-based overflow

EPSS

Процентиль: 17%
0.00054
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-6269

CVSS3: 5.3
ubuntu
9 месяцев назад

A vulnerability classified as critical was found in HDF5 up to 1.14.6. Affected by this vulnerability is the function H5C__reconstruct_cache_entry of the file H5Cimage.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

nvd логотип

CVE-2025-6269

CVSS3: 5.3
nvd
9 месяцев назад

A vulnerability classified as critical was found in HDF5 up to 1.14.6. Affected by this vulnerability is the function H5C__reconstruct_cache_entry of the file H5Cimage.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

msrc логотип

CVE-2025-6269

CVSS3: 5.3
msrc
7 месяцев назад

HDF5 H5Cimage.c H5C__reconstruct_cache_entry heap-based overflow

debian логотип

CVE-2025-6269

CVSS3: 5.3
debian
9 месяцев назад

A vulnerability classified as critical was found in HDF5 up to 1.14.6. ...

github логотип

GHSA-hp87-2chw-7hmc

CVSS3: 5.3
github
9 месяцев назад

A vulnerability classified as critical was found in HDF5 up to 1.14.6. Affected by this vulnerability is the function H5C__reconstruct_cache_entry of the file H5Cimage.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 17%
0.00054
Низкий

5.3 Medium

CVSS3