CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

2.5CVSS4.8AI score0.00614EPSS

SUSE CVE-2025-1352

A vulnerability has been found in GNU elfutils 0.192 and classified as critical. This vulnerability affects the function libdwthreadtail in the library libdwalloc.c of the component eu-readelf. The manipulation of the argument w leads to memory corruption. The attack can be initiated remotely. Th...

3.3CVSS5.5AI score0.00316EPSS

SUSE CVE-2025-1365

A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function processsymtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The explo...

SUSE CVE•added 2025/02/18 5:12 a.m.•3 views

SUSE CVE-2025-1371

A vulnerability has been found in GNU elfutils 0.192 and classified as problematic. This vulnerability affects the function handledynamicsymtab of the file readelf.c of the component eu-read. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has...

5.5CVSS3.5AI score0.00212EPSS

Exploits0References3

3.3CVSS5.5AI score0.0032EPSS

SUSE CVE-2025-1372

A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function dumpdatasection/printstringsection of the file readelf.c of the component eu-readelf. The manipulation of the argument z/x leads to buffer overflow. An attack has to b...

2.5CVSS3.6AI score0.0028EPSS

SUSE CVE-2025-1376

A vulnerability classified as problematic was found in GNU elfutils 0.192. This vulnerability affects the function elfstrptr in the library /libelf/elfstrptr.c of the component eu-strip. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The...

SUSE CVE-2025-1377

A vulnerability, which was classified as problematic, has been found in GNU elfutils 0.192. This issue affects the function gelfgetsymshndx of the file strip.c of the component eu-strip. The manipulation leads to denial of service. The attack needs to be approached locally. The exploit has been...

4.5AI score0.00298EPSS

RedhatCVE•added 2025/02/17 5:23 p.m.•5 views

CVE-2025-1376

A flaw was found in GNU elfutils. This vulnerability allows denial of service via manipulation of the function elfstrptr in /libelf/elfstrptr.c. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria...

2.5CVSS6.4AI score0.0028EPSS

RedhatCVE•added 2025/02/17 4:25 p.m.•8 views

CVE-2025-1377

A flaw was found in GNU elfutils. This vulnerability allows denial of service via manipulation of the gelfgetsymshndx function in strip.c. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising...

3.3CVSS6.4AI score0.00298EPSS

RedhatCVE•added 2025/02/17 4:25 p.m.•7 views

CVE-2025-1365

A flaw was found in GNU elfutils. This vulnerability allows a buffer overflow via manipulation of the argument D/a in the processsymtab function of readelf.c. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security...

5.3CVSS7AI score0.00316EPSS

RedhatCVE•added 2025/02/17 3:55 p.m.•8 views

CVE-2025-1352

A flaw was found in GNU elfutils. This vulnerability allows memory corruption via manipulation of the w argument in the libdwthreadtail function within libdwalloc.c. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

5CVSS6.7AI score0.00614EPSS