CVE-2025-5222

ADVISORY - nist

Summary

A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution.

EPSS Score⁠: 0.00025 (0.050)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-120⁠

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Impacted images

Advisories

NIST

CREATED

1 month ago

UPDATED

23 days ago

ADVISORY IDCVE-2025-5222⁠

EXPLOITABILITY SCORE

1

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CVSS SCORE

7high

Debian

CREATED

1 month ago

UPDATED

11 days ago

ADVISORY IDCVE-2025-5222⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY IDCVE-2025-5222⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow