CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-5001

A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been declared as problematic. This vulnerability affects the function calloc of the file pspp-convert.c. The manipulation of the argument -l leads to integer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.9%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 1.7

References

https://drive.google.com/file/d/12IIt8eR591Z8O1ABOCkT_jdXSWaBxMZx/view?usp=drive_link
https://savannah.gnu.org/bugs/index.php?67069
https://vuldb.com/?ctiid.309652
https://vuldb.com/?id.309652
https://vuldb.com/?submit.569966
https://www.gnu.org/
https://savannah.gnu.org/bugs/index.php?67069

Products affected by CVE-2025-5001

Gnu » Pspp » Version: N/A

cpe:2.3:a:gnu:pspp:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-5001

Products

Pricing

Contact Us