CVE Daily

CVE-2025-2924

A vulnerability, which was classified as problematic, was found in HDF5 up to 1...

Low CVSS 3.3

Overview

A vulnerability, which was classified as problematic, was found in HDF5 up to 1.14.6. This affects the function H5HL__fl_deserialize of the file src/H5HLcache.c. The manipulation of the argument free_block leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

CWE: CWE-119 Published: 2025-03-28T20:15:26.147
Risk analysis

This vulnerability is rated 🟢 LOW.

  • CVSS: 3.3 (LOW)
  • Detected tags: buffer (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags