CVE-2025-6516

Medium CVSS: 4.8

A vulnerability has been found in HDF5 up to 1.14.6 and classified as critical. This vulnerability affects the function H5F_addr_decode_len of the file /hdf5/src/H5Fint.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

Vendor

Hdfgroup

Product

Hdf5

CWE

CWE-119

Yayın Tarihi

2025-06-23 17:15:32

Güncelleme

2025-06-26 12:25:51

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Hdf5 MEDIUM Hdfgroup 2025

Referanslar

https://github.com/HDFGroup/hdf5/issues/5581 https://github.com/user-attachments/files/20626851/reproduce.tar.gz https://vuldb.com/?ctiid.313636 https://vuldb.com/?id.313636 https://vuldb.com/?submit.592589

Benzer Kayıtlar

High

CVE-2026-26200

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an `h5` file parsed by HDF5 c…

Medium

CVE-2025-7068

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5F…

Medium

CVE-2025-7069

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FS__sect_link…

Medium

CVE-2025-7067

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_…

Medium

CVE-2025-6858

A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5C__flus…

Medium

CVE-2025-6857

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the funct…