CVE-2025-2913

Medium CVSS: 4.8

A vulnerability was found in HDF5 up to 1.14.6. It has been rated as critical. Affected by this issue is the function H5FL__blk_gc_list of the file src/H5FL.c. The manipulation of the argument H5FL_blk_head_t leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

Vendor

Hdfgroup

Product

Hdf5

CWE

CWE-119

Yayın Tarihi

2025-03-28 17:15:30

Güncelleme

2026-01-23 20:51:23

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Hdf5 MEDIUM Hdfgroup 2025

Referanslar

https://github.com/HDFGroup/hdf5/issues/5376 https://vuldb.com/?ctiid.301886 https://vuldb.com/?id.301886 https://vuldb.com/?submit.520404

Benzer Kayıtlar

High

CVE-2026-26200

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an `h5` file parsed by HDF5 c…

Medium

CVE-2025-7068

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5F…

Medium

CVE-2025-7069

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FS__sect_link…

Medium

CVE-2025-7067

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_…

Medium

CVE-2025-6858

A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5C__flus…

Medium

CVE-2025-6857

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the funct…