CVE-2025-9403

🗓️ 25 Aug 2025 02:02:07Reported by VulDBType

CVE-2025-9403: Local access flaw in jqlang jq up to 1.6; run_jq_tests in jq_test.c JSON parser.

Reporter	Title	Published	Views	Family All 25
CBLMariner	CVE-2025-9403 affecting package jq for versions less than 1.6-5	10 Nov 202521:36	–	cbl_mariner
Circl	CVE-2025-9403	25 Aug 202504:52	–	circl
CNNVD	jq 安全漏洞	25 Aug 202500:00	–	cnnvd
Cvelist	CVE-2025-9403 jqlang jq JSON jq_test.c run_jq_tests assertion	25 Aug 202502:02	–	cvelist
Debian CVE	CVE-2025-9403	25 Aug 202502:02	–	debiancve
EUVD	EUVD-2025-25716	3 Oct 202520:07	–	euvd
Microsoft CVE	jqlang jq JSON jq_test.c run_jq_tests assertion	4 Sep 202506:38	–	mscve
NVD	CVE-2025-9403	25 Aug 202503:15	–	nvd
OpenVAS	openSUSE Security Advisory (SUSE-SU-2026:0931-1)	23 Mar 202600:00	–	openvas
OSV	AZL-66678 CVE-2025-9403 affecting package jq for versions less than 1.6-5	25 Aug 202503:15	–	osv

NVD

Vulners

Node

jqlang jqRange≤1.6

[
  {
    "vendor": "jqlang",
    "product": "jq",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "1.3",
        "status": "affected"
      },
      {
        "version": "1.4",
        "status": "affected"
      },
      {
        "version": "1.5",
        "status": "affected"
      },
      {
        "version": "1.6",
        "status": "affected"
      }
    ],
    "modules": [
      "JSON Parser"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
drive	www.drive.google.com/file/d/1r8m9PhU_rk-QPj6OMcs415FcvWPD-zJY/view
github	www.github.com/jqlang/jq/issues/3393
vuldb	www.vuldb.com/

17 Jun 2026 10:08Current

6.9Medium risk

Vulners AI Score6.9

CVSS 3.13.3 - 5.5

CVSS 21.7

CVSS 44.8

CVSS 33.3

EPSS0.00194

SSVC

CWE-617