Home > Vulnerability Database > CVE-2025-27598

Mend.io Vulnerability Database

CVE-2025-27598

Good to know:

Date: March 6, 2025

ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentially lead to denial of service. The problem has been patched. All users are advised to upgrade to v3.1.7 or v2.1.10.

Severity Score

7.5

Related Resources (6)

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-27598

Url: https://github.com/SixLabors/ImageSharp/security/advisories/GHSA-2cmq-823j-5qj8

Url: https://github.com/SixLabors/ImageSharp

Url: https://github.com/SixLabors/ImageSharp/issues/2859

Url: https://github.com/SixLabors/ImageSharp/pull/2890

Url: https://www.mend.io/vulnerability-database/CVE-2025-27598

Severity Score

7.5

Weakness Type (CWE)

Out-of-bounds Write

CWE-787

Top Fix

Upgrade Version

Upgrade to version SixLabors.ImageSharp - 3.1.7;SixLabors.ImageSharp - 2.1.10

Learn More

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-27598

Good to know:

Date: March 6, 2025

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?