CVE-2025-7424

ADVISORY - nist

Summary

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of service or unexpected behavior.

EPSS Score⁠: 0.00095 (0.271)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-843⁠

Access of Resource Using Incompatible Type ('Type Confusion')

Impacted images

Advisories

NIST

CREATED

6 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2025-7424⁠

EXPLOITABILITY SCORE

1.4

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-843⁠

CVSS SCORE

7.8high

Debian

CREATED

6 months ago

UPDATED

3 months ago

ADVISORY IDCVE-2025-7424⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

6 months ago

UPDATED

9 days ago

ADVISORY IDCVE-2025-7424⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5medium

Amazon

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY IDALAS2-2025-2966⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

5 months ago

UPDATED

5 months ago

ADVISORY IDALAS2023-2025-1119⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Photon

CREATED

3 months ago

UPDATED

2 months ago

ADVISORY ID

CVE-2025-7424

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5high