VYPR
Low severity3.3NVD Advisory· Published Mar 28, 2025· Updated Apr 29, 2026

CVE-2025-2912

CVE-2025-2912

Description

A vulnerability was found in HDF5 up to 1.14.6. It has been declared as problematic. Affected by this vulnerability is the function H5O_msg_flush of the file src/H5Omessage.c. The manipulation of the argument oh leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Hdfgroup/Hdf52 versions
    cpe:2.3:a:hdfgroup:hdf5:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:hdfgroup:hdf5:*:*:*:*:*:*:*:*range: <2.0.0
    • (no CPE)range: <=1.14.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.