CVE-2025-2912

🗓️ 28 Mar 2025 16:00:11Reported by VulDBType

Vulnerability in HDF5 up to 1.14.6 allows heap-based buffer overflow in H5O_msg_flush function.

Reporter	Title	Published	Views	Family All 24
AlpineLinux	CVE-2025-2912	28 Mar 202516:00	–	alpinelinux
Circl	CVE-2025-2912	28 Mar 202516:28	–	circl
CNNVD	HDF5 安全漏洞	28 Mar 202500:00	–	cnnvd
Cvelist	CVE-2025-2912 HDF5 H5Omessage.c H5O_msg_flush heap-based overflow	28 Mar 202516:00	–	cvelist
Debian CVE	CVE-2025-2912	28 Mar 202516:00	–	debiancve
EUVD	EUVD-2025-8636	3 Oct 202520:07	–	euvd
Microsoft CVE	HDF5 H5Omessage.c H5O_msg_flush heap-based overflow	3 Sep 202521:40	–	mscve
NVD	CVE-2025-2912	28 Mar 202516:15	–	nvd
OSV	DEBIAN-CVE-2025-2912	28 Mar 202516:15	–	osv
OSV	ECHO-DFC4-87E9-66A2	15 Sep 202501:12	–	osv

NVD

Vulners

Node

hdfgroup hdf5Range<2.0.0

[
  {
    "vendor": "n/a",
    "product": "HDF5",
    "versions": [
      {
        "version": "1.14.0",
        "status": "affected"
      },
      {
        "version": "1.14.1",
        "status": "affected"
      },
      {
        "version": "1.14.2",
        "status": "affected"
      },
      {
        "version": "1.14.3",
        "status": "affected"
      },
      {
        "version": "1.14.4",
        "status": "affected"
      },
      {
        "version": "1.14.5",
        "status": "affected"
      },
      {
        "version": "1.14.6",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/HDFGroup/hdf5/issues/5370
vuldb	www.vuldb.com/

29 Apr 2026 01:00Current

7.3High risk

Vulners AI Score7.3

CVSS 3.13.3 - 5.3

CVSS 21.7

CVSS 44.8

CVSS 33.3

EPSS0.00143

SSVC

hdf5 vulnerability heap overflow buffer overflow h5o_msg_flush function local exploit