CVE-2025-6035 Information
Jun 14, 2025
cve
Description
A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP \Despeckle\ plug-in. The issue occurs due to unchecked multiplication of image dimensions such as width height and bytes-per-pixel (img_bpp) which can result in allocating insufficient memory and subsequently performing out-of-bounds writes. This issue could lead to heap corruption a potential denial of service (DoS) or arbitrary code execution in certain scenarios.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Reference
https://access.redhat.com/security/cve/CVE-2025-6035 https://bugzilla.redhat.com/show_bug.cgi?id=2372515
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
LOW
Availability Impact
LOW
Base Score
HIGH
Base Severity
6.6
Related CNNVD
CNNVD-202506-1779 (Published: 2025-06-13)
Share on: