Sign In

CVE-2025-1371

ADVISORY - nist

Summary

A vulnerability has been found in GNU elfutils 0.192 and classified as problematic. This vulnerability affects the function handle_dynamic_symtab of the file readelf.c of the component eu-read. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The patch is identified as b38e562a4c907e08171c76b8b2def8464d5a104a. It is recommended to apply a patch to fix this issue.

EPSS Score: 0.00055 (0.176)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-404

Improper Resource Shutdown or Release

CWE-476

NULL Pointer Dereference

ADVISORY - redhat

(CWE-404|CWE-476)

Impacted images

Advisories

NIST

CREATED

UPDATED

ADVISORY IDCVE-2025-1371
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-404CWE-476

CVSS SCORE

4.8medium

Alpine

CREATED

UPDATED

ADVISORY IDCVE-2025-1371
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

UPDATED

ADVISORY IDCVE-2025-1371
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

UPDATED

ADVISORY IDCVE-2025-1371
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.5medium

Red Hat

CREATED

UPDATED

ADVISORY IDCVE-2025-1371
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
(CWE-404|CWE-476)

CVSS SCORE

3.3low

Photon

CREATED

UPDATED

ADVISORY ID

CVE-2025-1371

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.5medium