CVE-2025-7425

{"id": "CVE-2025-7425", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 5.8, "exploitabilityScore": 1.4}]}, "published": "2025-07-10T14:15:27.877", "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:12447", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:12450", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13267", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13308", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13309", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13310", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13311", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13312", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13313", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13314", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13335", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13464", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:13622", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14059", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14396", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14818", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14819", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14853", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:14858", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:15308", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:15672", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:15827", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:15828", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2025:18219", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-7425", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274", "source": "secalert@redhat.com"}, {"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140", "source": "secalert@redhat.com"}, {"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Undergoing Analysis", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-416"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en libxslt donde los atributos type, atype y flags se modifican de forma que corrompe la gesti\u00f3n de memoria interna. Cuando las funciones XSLT, como el proceso key(), generan fragmentos de \u00e1rbol, esta corrupci\u00f3n impide la limpieza correcta de los atributos ID. Como resultado, el sistema puede acceder a la memoria liberada, provocando fallos o permitiendo a los atacantes provocar la corrupci\u00f3n del mont\u00f3n."}], "lastModified": "2025-10-16T09:15:36.167", "sourceIdentifier": "secalert@redhat.com"}