CVE-2025-6856

Medium CVSS: 4.8

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FL__reg_gc_list of the file src/H5FL.c. The manipulation leads to use after free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Vendor

Hdfgroup

Product

Hdf5

CWE

CWE-119

Yayın Tarihi

2025-06-29 10:15:21

Güncelleme

2025-07-08 14:39:33

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Hdf5 MEDIUM Hdfgroup 2025

Referanslar

https://github.com/HDFGroup/hdf5/issues/5574 https://github.com/user-attachments/files/20623417/hdf5_crash_6.txt https://vuldb.com/?ctiid.314328 https://vuldb.com/?id.314328 https://vuldb.com/?submit.602528

Benzer Kayıtlar

High

CVE-2026-26200

HDF5 is software for managing data. Prior to version 1.14.4-2, an attacker who can control an `h5` file parsed by HDF5 c…

Medium

CVE-2025-7068

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5F…

Medium

CVE-2025-7069

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FS__sect_link…

Medium

CVE-2025-7067

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FS__sinfo_…

Medium

CVE-2025-6858

A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5C__flus…

Medium

CVE-2025-6857

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the funct…