VYPR
Low severity3.3NVD Advisory· Published Jun 23, 2025· Updated Apr 29, 2026

CVE-2025-6499

CVE-2025-6499

Description

A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function ucl_parse_multiline_string of the file src/ucl_parser.c. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Vstakhov/Libucl2 versions
    cpe:2.3:a:vstakhov:libucl:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vstakhov:libucl:*:*:*:*:*:*:*:*range: <=0.9.2
    • (no CPE)range: <=0.9.2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.