CVE-2025-6021

HIGH EPSS 60.6%

Published Jun 12, 20251y ago · Modified Jun 17, 20261w ago

7.5 CVSS 3.1

High

Published Jun 12, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.

CVSS Details

Base Score

7.5

Exploitability

3.9

Impact

3.6

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality None

Integrity None

Availability High

Threat Intelligence

EPSS Exploit Probability

60.6% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 72

Vendor	Product	Version	Range
xmlsoft	libxml2	*	<2.14.4
redhat	jboss_core_services	*	any
redhat	openshift_container_platform	4.12	any
redhat	openshift_container_platform	4.13	any
redhat	openshift_container_platform	4.14	any
redhat	openshift_container_platform	4.15	any
redhat	openshift_container_platform	4.16	any
redhat	openshift_container_platform	4.17	any
redhat	openshift_container_platform	4.18	any
redhat	openshift_container_platform_for_arm64	4.13	any
redhat	openshift_container_platform_for_arm64	4.14	any
redhat	openshift_container_platform_for_arm64	4.15	any
redhat	openshift_container_platform_for_arm64	4.16	any
redhat	openshift_container_platform_for_arm64	4.17	any
redhat	openshift_container_platform_for_arm64	4.18	any
redhat	openshift_container_platform_for_ibm_z	4.13	any
redhat	openshift_container_platform_for_ibm_z	4.14	any
redhat	openshift_container_platform_for_ibm_z	4.15	any
redhat	openshift_container_platform_for_ibm_z	4.16	any
redhat	openshift_container_platform_for_ibm_z	4.17	any
redhat	openshift_container_platform_for_ibm_z	4.18	any
redhat	openshift_container_platform_for_linuxone	4.13	any
redhat	openshift_container_platform_for_linuxone	4.14	any
redhat	openshift_container_platform_for_linuxone	4.15	any
redhat	openshift_container_platform_for_linuxone	4.16	any
redhat	openshift_container_platform_for_linuxone	4.17	any
redhat	openshift_container_platform_for_linuxone	4.18	any
redhat	openshift_container_platform_for_power	4.13	any
redhat	openshift_container_platform_for_power	4.14	any
redhat	openshift_container_platform_for_power	4.15	any
redhat	openshift_container_platform_for_power	4.16	any
redhat	openshift_container_platform_for_power	4.17	any
redhat	openshift_container_platform_for_power	4.18	any
redhat	enterprise_linux	8.0	any
redhat	enterprise_linux	9.0	any
redhat	enterprise_linux	10.0	any
redhat	enterprise_linux_eus	8.4	any
redhat	enterprise_linux_eus	8.6	any
redhat	enterprise_linux_eus	8.8	any
redhat	enterprise_linux_eus	9.4	any
redhat	enterprise_linux_eus	9.6	any
redhat	enterprise_linux_eus	10.0	any
redhat	enterprise_linux_for_arm_64	8.0_aarch64	any
redhat	enterprise_linux_for_arm_64	9.0_aarch64	any
redhat	enterprise_linux_for_arm_64	9.4_aarch64	any
redhat	enterprise_linux_for_arm_64	10.0_aarch64	any
redhat	enterprise_linux_for_arm_64_eus	9.4_aarch64	any
redhat	enterprise_linux_for_arm_64_eus	9.6_aarch64	any
redhat	enterprise_linux_for_arm_64_eus	10.0_aarch64	any
redhat	enterprise_linux_for_ibm_z_systems	8.0_s390x	any
redhat	enterprise_linux_for_ibm_z_systems	9.4_s390x	any
redhat	enterprise_linux_for_ibm_z_systems	10.0_s390x	any
redhat	enterprise_linux_for_ibm_z_systems_eus	9.0_s390x	any
redhat	enterprise_linux_for_ibm_z_systems_eus	9.4_s390x	any
redhat	enterprise_linux_for_ibm_z_systems_eus	9.6_s390x	any
redhat	enterprise_linux_for_ibm_z_systems_eus	10.0_s390x	any
redhat	enterprise_linux_for_power_little_endian	8.0_ppc64le	any
redhat	enterprise_linux_for_power_little_endian	9.0_ppc64le	any
redhat	enterprise_linux_for_power_little_endian	10.0_ppc64le	any
redhat	enterprise_linux_for_power_little_endian_eus	9.4_ppc64le	any
redhat	enterprise_linux_for_power_little_endian_eus	9.6_ppc64le	any
redhat	enterprise_linux_for_power_little_endian_eus	10.0_ppc64le	any
redhat	enterprise_linux_server	7.0	any
redhat	enterprise_linux_server_aus	8.2	any
redhat	enterprise_linux_server_aus	8.4	any
redhat	enterprise_linux_server_aus	8.6	any
redhat	enterprise_linux_server_aus	9.2	any
redhat	enterprise_linux_server_aus	9.4	any
redhat	enterprise_linux_server_aus	9.6	any
redhat	enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions	9.4_ppc64le	any
redhat	enterprise_linux_server_tus	8.8	any
redhat	in-vehicle_operating_system	1.0	any

References 28

access.redhat.com https://access.redhat.com/errata/RHSA-2025:10630

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:10698

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:10699

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:11580

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:11673
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12098

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12099

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12199

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12237

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12239

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12240

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:12241

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:13267

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:13289

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:13325

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:13335

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:13336

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:14059

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:14396

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:15308

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:15672

Third Party Advisory
access.redhat.com https://access.redhat.com/errata/RHSA-2025:19020
access.redhat.com https://access.redhat.com/errata/RHSA-2026:7519
access.redhat.com https://access.redhat.com/security/cve/CVE-2025-6021

Third Party Advisory
bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2372406

Issue Tracking
cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-032379.html
gitlab.gnome.org https://gitlab.gnome.org/GNOME/libxml2/-/issues/926

ExploitIssue TrackingVendor Advisory
lists.debian.org https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.