CVE-2025-2926 HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference

🗓️ 28 Mar 2025 20:00:13Reported by VulDBType

Vulnerability CVE-2025-2926 in HDF5 affects null pointer dereference in H5Ocache.c function.

Reporter	Title	Published	Views	Family All 28
AlpineLinux	CVE-2025-2926	28 Mar 202520:00	–	alpinelinux
CBLMariner	CVE-2025-2926 affecting package hdf5 for versions less than 1.14.6-1	7 Jan 202619:09	–	cbl_mariner
CBLMariner	CVE-2025-2926 affecting package hdf5 for versions less than 1.14.6-1	12 Jan 202621:27	–	cbl_mariner
Circl	CVE-2025-2926	28 Mar 202520:28	–	circl
CNNVD	HDF5 安全漏洞	28 Mar 202500:00	–	cnnvd
CVE	CVE-2025-2926	28 Mar 202520:00	–	cve
Debian CVE	CVE-2025-2926	28 Mar 202520:00	–	debiancve
EUVD	EUVD-2025-8654	3 Oct 202520:07	–	euvd
Microsoft CVE	HDF5 H5Ocache.c H5O__cache_chk_serialize null pointer dereference	4 Sep 202504:23	–	mscve
NVD	CVE-2025-2926	28 Mar 202520:15	–	nvd

[
  {
    "vendor": "n/a",
    "product": "HDF5",
    "versions": [
      {
        "version": "1.14.0",
        "status": "affected"
      },
      {
        "version": "1.14.1",
        "status": "affected"
      },
      {
        "version": "1.14.2",
        "status": "affected"
      },
      {
        "version": "1.14.3",
        "status": "affected"
      },
      {
        "version": "1.14.4",
        "status": "affected"
      },
      {
        "version": "1.14.5",
        "status": "affected"
      },
      {
        "version": "1.14.6",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/HDFGroup/hdf5/issues/5384
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

24 Jul 2025 09:43Current

CVSS 21.7

CVSS 3.13.3

CVSS 33.3

CVSS 44.8

EPSS0.00204

hdf5 vulnerability null pointer dereference local exploit public disclosure