Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-6817

Опубликовано: 28 июн. 2025
Источник: redhat
CVSS3: 3.3

Описание

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation leads to resource consumption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

A flaw was found in hdf5. The H5C__load_entry function in HDF5 1.14.6 contains an issue that results in resource consumption when processing a specially crafted file. This flaw allows a local attacker to trigger this condition by providing the vulnerable file to the application. This manipulation can lead to excessive resource usage, potentially resulting in a denial of service.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux AI (RHEL AI)hdf5Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-400
Дефект:
CWE-404
https://bugzilla.redhat.com/show_bug.cgi?id=2375315hdf5: HDF5 Resource Consumption Vulnerability

3.3 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-6817

CVSS3: 3.3
ubuntu
около 1 месяца назад

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation leads to resource consumption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

nvd логотип

CVE-2025-6817

CVSS3: 3.3
nvd
около 1 месяца назад

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation leads to resource consumption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

debian логотип

CVE-2025-6817

CVSS3: 3.3
debian
около 1 месяца назад

A vulnerability, which was classified as problematic, has been found i ...

github логотип

GHSA-wg8f-wjx8-3m3m

CVSS3: 3.3
github
около 1 месяца назад

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation leads to resource consumption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

3.3 Low

CVSS3