CVE Daily

CVE-2025-2914

A vulnerability classified as problematic has been found in HDF5 up to 1.14.6. T...

Low CVSS 3.3

Overview

A vulnerability classified as problematic has been found in HDF5 up to 1.14.6. This affects the function H5FS__sinfo_Srialize_Sct_cb of the file src/H5FScache.c. The manipulation of the argument sect leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

CWE: CWE-119 Published: 2025-03-28T17:15:30.510
Risk analysis

This vulnerability is rated 🟢 LOW.

  • CVSS: 3.3 (LOW)
  • Detected tags: buffer (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags