Home > Vulnerability Database > CVE-2025-7424

Mend.io Vulnerability Database

CVE-2025-7424

Date: July 10, 2025

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of service or unexpected behavior.

Severity Score

7.8

Related Resources (4)

Url: https://access.redhat.com/security/cve/CVE-2025-7424

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-7424

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2379228

Url: https://www.mend.io/vulnerability-database/CVE-2025-7424

Severity Score

7.8

Weakness Type (CWE)

Access of Resource Using Incompatible Type ('Type Confusion')

CWE-843

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	NONE
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-7424

Date: July 10, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?