CNNVD-202509-4208 Information

CNNVD ID

CNNVD-202509-4208

Related CVE

CVE-2025-10998

• CNNVD Published: 2025-09-26

Description (Chinese)

openbabel是Open Babel开源的一个化学工具箱软件。 openbabel 3.1.1及之前版本存在代码问题漏洞，该漏洞源于文件/src/formats/chemkinformat.cpp中函数ChemKinFormat::ReadReactionQualifierLines存在空指针取消引用，可能导致本地攻击。

Description (English)

Openbabel is an Open Babel open-source chemical toolbox software. Openbabel 3.1.1 and previous versions had a code problem loophole, which originated in the local attack that could result from the absence of an empty reference pointer for the function ChemKinFormat:: ReadReactionQualifier Lines.

Hazard Level

Critical

Vulnerability Type

代码问题

Affected Vendor

Open Babel

Published

2025-09-26

Last Modified

2026-02-24

References

https://github.com/openbabel/openbabel/issues/2829 https://github.com/user-attachments/files/22318526/poc.zip https://vuldb.com/?ctiid.325926 https://vuldb.com/?id.325926 https://vuldb.com/?submit.654063