CVE-2025-59375

ADVISORY - nist

Summary

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.

EPSS Score⁠: 0.00121 (0.319)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-770⁠

Allocation of Resources Without Limits or Throttling

Impacted images

Advisories

Alpine

CREATED

2 months ago

UPDATED

4 days ago

ADVISORY IDCVE-2025-59375⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
alpine/expat	apk	alpine	3.20	<2.7.2-r0	2.7.2-r0
alpine/expat	apk	alpine	edge	<2.7.2-r0	2.7.2-r0
alpine/expat	apk	alpine	3.23	<2.7.2-r0	2.7.2-r0
alpine/expat	apk	alpine	3.21	<2.7.2-r0	2.7.2-r0
alpine/expat	apk	alpine	3.22	<2.7.2-r0	2.7.2-r0
alpine/expat	apk	alpine	3.19	<2.7.2-r0	2.7.2-r0

Severity and metrics

No CVSS data available from this advisory.

NIST

CREATED

2 months ago

UPDATED

10 days ago

ADVISORY IDCVE-2025-59375⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-770⁠

CVSS SCORE

7.5high

Debian

CREATED

2 months ago

UPDATED

6 days ago

ADVISORY IDCVE-2025-59375⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY IDCVE-2025-59375⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

Amazon

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY IDALAS2-2025-3008⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY IDALAS2023-2025-1196⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

2 months ago

UPDATED

2 months ago

ADVISORY IDALAS2023-2025-1203⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Amazon

CREATED

1 month ago

UPDATED

23 days ago

ADVISORY IDALAS2023-2025-1229⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Rocky

CREATED

8 days ago

UPDATED

8 days ago

ADVISORY IDRLSA-2025:19403⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Oracle

CREATED

13 days ago

UPDATED

13 days ago

ADVISORY IDELSA-2025-19403⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Ahigh

Photon

CREATED

1 month ago

UPDATED

1 month ago

ADVISORY ID

CVE-2025-59375

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

7.5high