VYPR
Low severity3.3NVD Advisory· Published Mar 28, 2025· Updated Apr 29, 2026

CVE-2025-2923

CVE-2025-2923

Description

A vulnerability, which was classified as problematic, has been found in HDF5 up to 1.14.6. Affected by this issue is the function H5F_addr_encode_len of the file src/H5Fint.c. The manipulation of the argument pp leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Hdfgroup/Hdf52 versions
    cpe:2.3:a:hdfgroup:hdf5:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:hdfgroup:hdf5:*:*:*:*:*:*:*:*range: <1.14.6
    • (no CPE)range: <= 1.14.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.