Home > Vulnerability Database > CVE-2025-7208

Mend.io Vulnerability Database

CVE-2025-7208

Date: July 8, 2025

A vulnerability was found in 9fans plan9port up to 9da5b44. It has been classified as critical. This affects the function edump in the library /src/plan9port/src/libsec/port/x509.c. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The identifier of the patch is b3e06559475b0130a7a2fb56ac4d131d13d2012f. It is recommended to apply a patch to fix this issue.

Severity Score

9.8

Related Resources (10)

Url: https://vuldb.com/?ctiid.259053

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-7208

Url: https://vuldb.com/?submit.304567

Url: https://github.com/9fans/plan9port/issues/710#issuecomment-2819906648

Url: https://vuldb.com/?id.259053

Url: https://git.9front.org/plan9front/plan9front/b3e06559475b0130a7a2fb56ac4d131d13d2012f/commit.html

Url: https://github.com/user-attachments/files/19698345/plan9port_crash_1.txt

Url: https://drive.google.com/drive/folders/1kedwNLNDiFQB2OAp7S-ZKYoF7nxfIZGO?usp=sharing

Url: https://vuldb.com/?submit.607684

Url: https://www.mend.io/vulnerability-database/CVE-2025-7208

Severity Score

9.8

Weakness Type (CWE)

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-119

Heap-based Buffer Overflow

CWE-122

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-7208

Date: July 8, 2025

Severity Score

Related Resources (10)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?