Vulnerabilities > CVE-2025-46397

047910
CVSS 4.7 - MEDIUM
Attack vector
LOCAL
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
local
high complexity
CWE-121
NVD
Published: 2025-04-23
Updated: 2025-05-15

Summary

In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation at the bezier_spline function.

Common Weakness Enumeration (CWE)

References