CNNVD-202509-4215 Information

CNNVD ID

CNNVD-202509-4215

Related CVE

CVE-2025-10994

• CNNVD Published: 2025-09-26

Description (Chinese)

openbabel是Open Babel开源的一个化学工具箱软件。 openbabel 3.1.1及之前版本存在资源管理错误漏洞，该漏洞源于文件gamessformat.cpp中GAMESSOutputFormat::ReadMolecule函数存在释放后重用问题，可能导致本地攻击。

Description (English)

Openbabel is an Open Babel open-source chemical toolbox software. Openbabel 3.1.1 and previous versions contain a resource management error loophole, which arises from the GAMSSOutputFormat: :ReadMolecule function in document Gamessformat.cpp, which has a post-release reuse problem and may lead to a local attack.

Hazard Level

High

Vulnerability Type

资源管理错误

Affected Vendor

Open Babel

Published

2025-09-26

Last Modified

2026-02-24

References

https://github.com/openbabel/openbabel/issues/2834 https://github.com/user-attachments/files/22318611/poc.zip https://vuldb.com/?ctiid.325922 https://vuldb.com/?id.325922 https://vuldb.com/?submit.654057