CVE-2025-8734

Low CVSS 3.3

Overview

A vulnerability classified as problematic has been found in GNU Bison up to 3.8.2. Affected is the function code_free of the file src/scan-code.c. The manipulation leads to double free. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

CWE: CWE-119 Published: 2025-08-08T18:15:29.527

Risk analysis

This vulnerability is rated 🟢 LOW.

CVSS: 3.3 (LOW)
Detected tags: double_free (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags