CVE-2025-2310

by Fred · 14/03/2025

A vulnerability was found in HDF5 1.14.6 and classified as critical. This issue affects the function H5MM_strndup of the component Metadata Attribute Decoder. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The vendor plans to fix this issue in an upcoming release.

More information : https://github.com/madao123123/crash_report/blob/main/hdf5_poc/hdf5_poc4.md

CVE-2025-2310

Similar

Recent Posts

Categories

CVE-2025-2310

Share this:

Similar

Recent Posts

Categories

Tags