CVE-2025-11412

ADVISORY - nist

Summary

A vulnerability has been found in GNU Binutils 2.45. This impacts the function bfd_elf_gc_record_vtentry of the file bfd/elflink.c of the component Linker. The manipulation leads to out-of-bounds read. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of the patch is 047435dd988a3975d40c6626a8f739a0b2e154bc. To fix this issue, it is recommended to deploy a patch.

EPSS Score⁠: 0.00027 (0.068)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-119⁠

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-125⁠

Out-of-bounds Read

ADVISORY - redhat

(CWE-119|CWE-125)⁠

Impacted images

Advisories

NIST

CREATED

3 months ago

UPDATED

3 months ago

ADVISORY IDCVE-2025-11412⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-119⁠CWE-125⁠

CVSS SCORE

4.8medium

Alpine

CREATED

3 months ago

UPDATED

3 months ago

ADVISORY IDCVE-2025-11412⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

3 months ago

UPDATED

10 days ago

ADVISORY IDCVE-2025-11412⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

3 months ago

UPDATED

29 days ago

ADVISORY IDCVE-2025-11412⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.5medium

Amazon

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDALAS2023-2025-1301⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Red Hat

CREATED

3 months ago

UPDATED

3 days ago

ADVISORY IDCVE-2025-11412⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

(CWE-119|CWE-125)⁠

CVSS SCORE

3.3low

Chainguard

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY ID

CGA-658v-wxj6-76q5

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Chainguard

CREATED

2 days ago

UPDATED

2 days ago

ADVISORY ID

CGA-8vqj-x99j-rv9r

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Photon

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY ID

CVE-2025-11412

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.5medium

minimos

CREATED

3 months ago

UPDATED

3 months ago

ADVISORY ID

MINI-443x-h35q-gm9w

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY