The vulnerability of the H5O__layout_encode function in the H5Olayout.c component of the HDF file processing library allows a attacker to cause a service failure.

The vulnerability of the H5Olayoutencode function in the H5Olayout.c component of the HDF file processing library is related to the escape of operations outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures using a specially created...

CVE-2025-33053 Exploit via Malicious .URL File and WebDAV

This module exploits CVE-2025-33053 by generating a malicious .URL file pointing to a trusted LOLBAS binary with parameters designed to trigger unintended behavior. Optionally, a payload is generated and hosted on a specified WebDAV directory. When the victim opens the shortcut, it will attempt t...

AZL-64407 CVE-2025-6858 affecting package hdf5 for versions less than 1.14.6-1

A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5Cflushsingleentry of the file src/H5Centry.c. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has been disclosed to the publi...

DEBIAN-CVE-2025-6856

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FLreggclist of the file src/H5FL.c. The manipulation leads to use after free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

UBUNTU-CVE-2025-6857

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the function H5Gnodecmp3 of the file src/H5Gnode.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...

UBUNTU-CVE-2025-6856

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FLreggclist of the file src/H5FL.c. The manipulation leads to use after free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

HDF5 安全漏洞

HDF5 is a library of HDF open source . HDF5 version 1.14.6 there is a buffer overflow vulnerability , the vulnerability stems from the file src/H5Gnode.c function H5Gnodecmp3 fails to correctly validate the length of the input data size , a remote attacker can use this vulnerability on the system...

HDF5 资源管理错误漏洞

HDF5 is a library of HDF open source . A security vulnerability exists in HDF5 version 1.14.6, which stems from a confusion about the instruction in the function H5FLreggclist in the file src/H5FL.c that is responsible for freeing memory. An attacker can exploit this vulnerability to potentially...

DEBIAN-CVE-2025-6818

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5Ochunkprotect of the file /src/H5Ochunk.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may ...

AZL-64434 CVE-2025-6818 affecting package hdf5 for versions less than 1.14.6-1

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5Ochunkprotect of the file /src/H5Ochunk.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may ...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the H5Ochunkprotect function. An attacker can cause a denial of service by triggering a heap overflow through local access with low privileges. Remediation A fix was pushed into the master branch but not ye...

DEBIAN-CVE-2025-6817

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5Cloadentry of the file /src/H5Centry.c. The manipulation leads to resource consumption. The attack needs to be approached locally. The exploit has been disclosed to the public an...

UBUNTU-CVE-2025-6817

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5Cloadentry of the file /src/H5Centry.c. The manipulation leads to resource consumption. The attack needs to be approached locally. The exploit has been disclosed to the public an...

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release in the H5Ochunkdeserialize function. An attacker can cause excessive resource consumption by providing specially crafted input that triggers repeated processing within this function. Remediation A f...

AZL-64413 CVE-2025-6816 affecting package hdf5 for versions less than 1.14.6-1

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to...

DEBIAN-CVE-2025-6816

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to...

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the H5Ofsinfoencode function. An attacker can cause a crash or disrupt service by providing specially crafted input that triggers a heap-based buffer overflow. Remediation A fix was pushed into the master...

HDF5 安全漏洞

HDF5 is a data management suite developed by The HDF Group for storing and managing large-scale scientific data. A buffer overflow vulnerability exists in HDF5 1.14.6 and earlier versions, which stems from improper handling of the H5Ofsinfoencode function in the /src/H5Ofsinfo.c file. An attacker...

HDF5 安全漏洞

HDF5 is an open source file format and library for storing and managing large-scale scientific data. HDF5 suffers from a heap buffer overflow vulnerability that originates from an exception in the handling of the H5Ochunkprotect function in the file /src/H5Ochunk.c. An attacker can exploit this...

HDF5 资源管理错误漏洞

HDF5 is a data management suite developed by The HDF Group for storing and managing large-scale scientific data. A security vulnerability exists in HDF5 version 1.14.6, which originates from an exception in the handling of the H5Cloadentry function in the /src/H5Centry.c file. An attacker can...