CVE-2025-48174

ADVISORY - nist

Summary

In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.

EPSS Score⁠: 0.00062 (0.194)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-190⁠

Integer Overflow or Wraparound

Impacted images

Advisories

NIST

CREATED

7 months ago

UPDATED

1 month ago

ADVISORY IDCVE-2025-48174⁠

EXPLOITABILITY SCORE

1.4

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-190⁠

CVSS SCORE

4.5medium

Alpine

CREATED

4 months ago

UPDATED

1 month ago

ADVISORY IDCVE-2025-48174⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

7 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2025-48174⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

7 months ago

UPDATED

5 months ago

ADVISORY IDCVE-2025-48174⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

9.1medium