Vulnerabilities > CVE-2025-2913

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

local

low complexity

CWE-416

NVD

Published: 2025-03-28

Updated: 2025-03-28

Summary

A vulnerability was found in HDF5 up to 1.14.6. It has been rated as problematic. Affected by this issue is the function H5FL__blk_gc_list of the file src/H5FL.c. The manipulation of the argument H5FL_blk_head_t leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://github.com/HDFGroup/hdf5/issues/5376
https://vuldb.com/?ctiid.301886
https://vuldb.com/?id.301886
https://vuldb.com/?submit.520404

Vulnerabilities > CVE-2025-2913 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2025-2913"}]}

Summary

Common Weakness Enumeration (CWE)

References

Vulnerabilities > CVE-2025-2913