Home > Vulnerability Database > CVE-2025-6816

Mend.io Vulnerability Database

CVE-2025-6816

Date: June 28, 2025

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5O__fsinfo_encode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

Severity Score

9.8

Related Resources (8)

Url: https://security-tracker.debian.org/tracker/CVE-2025-6816

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-6816

Url: https://vuldb.com/?ctiid.314254

Url: https://vuldb.com/?submit.602291

Url: https://vuldb.com/?id.314254

Url: https://github.com/HDFGroup/hdf5/issues/5571

Url: https://github.com/user-attachments/files/20623354/hdf5_crash_3.txt

Url: https://www.mend.io/vulnerability-database/CVE-2025-6816

Severity Score

9.8

Weakness Type (CWE)

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119

Heap-based Buffer Overflow

CWE-122

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-6816

Date: June 28, 2025

Severity Score

Related Resources (8)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?