CVE-2025-65086

🗓️ 12 May 2026 20:22:42Reported by icscertType

Out-of-bounds write in Ashlar-Vellum tools enables arbitrary code on parsing a crafted Visual C six file.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2025-65086	12 May 202620:22	–	attackerkb
CNNVD	Ashlar-Vellum多款产品缓冲区错误漏洞	12 May 202600:00	–	cnnvd
Cvelist	CVE-2025-65086 Out-of-bounds write in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	12 May 202620:22	–	cvelist
EUVD	EUVD-2025-209805	12 May 202621:31	–	euvd
NVD	CVE-2025-65086	12 May 202621:16	–	nvd
Positive Technologies	PT-2026-40428	12 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-65086	5 Jun 202619:41	–	redhatcve
Vulnrichment	CVE-2025-65086 Out-of-bounds write in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	12 May 202620:22	–	vulnrichment

NVD

Vulners

Node

ashlar argonRange≤12.6.1204.216

ashlar cobaltRange≤12.6.1204.216

ashlar cobalt_shareRange≤12.6.1204.216

ashlar lithiumRange≤12.6.1204.216

ashlar xenonRange≤12.6.1204.216

[
  {
    "vendor": "Ashlar-Vellum",
    "product": "Cobalt",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "12.6.1204.216",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Ashlar-Vellum",
    "product": "Xenon",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "12.6.1204.216",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Ashlar-Vellum",
    "product": "Argon",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "12.6.1204.216",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Ashlar-Vellum",
    "product": "Lithium",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "12.6.1204.216",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Ashlar-Vellum",
    "product": "Cobalt Share",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThanOrEqual": "12.6.1204.216",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-25-329-01

14 May 2026 14:57Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.17.8

CVSS 48.4

EPSS0.00013

SSVC

CWE-787