CNNVD-202509-4209 Information

CNNVD ID

CNNVD-202509-4209

Related CVE

CVE-2025-10999

• CNNVD Published: 2025-09-26

Description (Chinese)

openbabel是Open Babel开源的一个化学工具箱软件。 openbabel 3.1.1及之前版本存在代码问题漏洞，该漏洞源于文件/src/formats/cacaoformat.cpp中的函数CacaoFormat::SetHilderbrandt存在空指针取消引用，可能导致本地攻击。

Description (English)

Openbabel is an Open Babel open-source chemical toolbox software. Openbabel 3.1.1 and previous versions have a code problem loophole, which originates from the CacaoFormat: SetHilderbrandt ’ s function in file/src/formats/cacaoformat.cpp, which has an empty pointer to unquote and may lead to local attacks.

Hazard Level

Critical

Vulnerability Type

代码问题

Affected Vendor

Open Babel

Published

2025-09-26

Last Modified

2026-02-24

References

https://github.com/openbabel/openbabel/issues/2827 https://github.com/user-attachments/files/22318503/poc.zip https://vuldb.com/?ctiid.325927 https://vuldb.com/?id.325927 https://vuldb.com/?submit.654064