Home > Vulnerability Database > CVE-2025-6857

Mend.io Vulnerability Database

CVE-2025-6857

Date: June 29, 2025

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the function H5G__node_cmp3 of the file src/H5Gnode.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

Severity Score

8.4

Related Resources (8)

Url: https://vuldb.com/?ctiid.314329

Url: https://vuldb.com/?submit.602529

Url: https://security-tracker.debian.org/tracker/CVE-2025-6857

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-6857

Url: https://vuldb.com/?id.314329

Url: https://github.com/user-attachments/files/20623442/hdf5_crash_7.txt

Url: https://github.com/HDFGroup/hdf5/issues/5575

Url: https://www.mend.io/vulnerability-database/CVE-2025-6857

Severity Score

8.4

Weakness Type (CWE)

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119

Stack-based Buffer Overflow

CWE-121

CVSS v3.1

Base Score:	8.4
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-6857

Date: June 29, 2025

Severity Score

Related Resources (8)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?