CVE-2025-6499 Information

Jun 26, 2025 cve

Description

A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function ucl_parse_multiline_string of the file src/ucl_parser.c. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/user-attachments/files/19825399/libucl_crash.txt https://github.com/vstakhov/libucl/issues/319 https://github.com/vstakhov/libucl/issues/319 https://vuldb.com/?ctiid.313615 https://vuldb.com/?id.313615 https://vuldb.com/?submit.601011

CNNVD-202506-2932 (Published: 2025-06-23)

Share on:

CVE-2025-6499 Information

Description

Reference

Related CNNVD