BIT-JAVA-MIN-2025-7424 Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes

🗓️ 06 May 2026 14:45:50Reported by GoogleType

osv

osv🔗 osv.dev👁 4 Views

Libxslt type confusion in xmlnode.psvi between stylesheet and source nodes may crash or corrupt.

Reporter	Title	Published	Views	Family All 135
ATTACKERKB	CVE-2025-7424	10 Jul 202514:05	–	attackerkb
Tenable Nessus	Amazon Linux 2023 : libxslt, libxslt-devel, python3-libxslt (ALAS2023-2025-1119)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : libxslt (ALAS-2025-2966)	19 Aug 202500:00	–	nessus
Tenable Nessus	Apple TV < 18.6 Multiple Vulnerabilities (124153)	13 Aug 202500:00	–	nessus
Tenable Nessus	Apple iOS < 18.6 Multiple Vulnerabilities (124147)	30 Jul 202500:00	–	nessus
Tenable Nessus	Debian dla-4309 : libxslt1-dev - security update	25 Sep 202500:00	–	nessus
Tenable Nessus	Debian dsa-5979 : libxslt1-dev - security update	19 Aug 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : libxslt (EulerOS-SA-2025-2204)	11 Oct 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : libxslt (EulerOS-SA-2025-2236)	11 Oct 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : libxslt (EulerOS-SA-2025-2270)	24 Oct 202500:00	–	nessus

Source	Link
seclists	www.seclists.org/fulldisclosure/2025/Aug/0
seclists	www.seclists.org/fulldisclosure/2025/Jul/30
seclists	www.seclists.org/fulldisclosure/2025/Jul/32
seclists	www.seclists.org/fulldisclosure/2025/Jul/33
seclists	www.seclists.org/fulldisclosure/2025/Jul/35
seclists	www.seclists.org/fulldisclosure/2025/Jul/37
openwall	www.openwall.com/lists/oss-security/2025/07/11/2
access	www.access.redhat.com/errata/RHBA-2025:12345
access	www.access.redhat.com/errata/RHSA-2026:11015
access	www.access.redhat.com/security/cve/CVE-2025-7424

08 May 2026 07:56Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.17.5

EPSS0.00374

SSVC

libxslt type confusion xmlnode psvi stylesheet nodes source nodes memory corruption denial of service