CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-57107

Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap buffer overflow vulnerability in vtkGLTFDocumentLoader. When processing specially crafted GLTF files, the copy constructor of Accessor objects fails to properly validate buffer boundaries before performing memory read operations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.5%

CVSS Severity

CVSS v3 Score 7.1

References

https://gitlab.kitware.com/vtk/vtk/-/issues/19732

Products affected by CVE-2025-57107

Vtk » Vtk » Version: N/A

cpe:2.3:a:vtk:vtk:-
Vtk » Vtk » Version: 2.4.0

cpe:2.3:a:vtk:vtk:2.4.0
Vtk » Vtk » Version: 3.1.1

cpe:2.3:a:vtk:vtk:3.1.1
Vtk » Vtk » Version: 3.1.2

cpe:2.3:a:vtk:vtk:3.1.2
Vtk » Vtk » Version: 3.2.0

cpe:2.3:a:vtk:vtk:3.2.0
Vtk » Vtk » Version: 4.0.2

cpe:2.3:a:vtk:vtk:4.0.2
Vtk » Vtk » Version: 4.2.0

cpe:2.3:a:vtk:vtk:4.2.0
Vtk » Vtk » Version: 4.2.1

cpe:2.3:a:vtk:vtk:4.2.1
Vtk » Vtk » Version: 4.2.2

cpe:2.3:a:vtk:vtk:4.2.2
Vtk » Vtk » Version: 4.2.3

cpe:2.3:a:vtk:vtk:4.2.3
Vtk » Vtk » Version: 4.2.4

cpe:2.3:a:vtk:vtk:4.2.4
Vtk » Vtk » Version: 4.2.5

cpe:2.3:a:vtk:vtk:4.2.5
Vtk » Vtk » Version: 4.2.6

cpe:2.3:a:vtk:vtk:4.2.6
Vtk » Vtk » Version: 4.4.0

cpe:2.3:a:vtk:vtk:4.4.0
Vtk » Vtk » Version: 4.4.1

cpe:2.3:a:vtk:vtk:4.4.1
Vtk » Vtk » Version: 4.4.2

cpe:2.3:a:vtk:vtk:4.4.2
Vtk » Vtk » Version: 5.0.0

cpe:2.3:a:vtk:vtk:5.0.0
Vtk » Vtk » Version: 5.0.1

cpe:2.3:a:vtk:vtk:5.0.1
Vtk » Vtk » Version: 5.0.2

cpe:2.3:a:vtk:vtk:5.0.2
Vtk » Vtk » Version: 5.0.3

cpe:2.3:a:vtk:vtk:5.0.3
Vtk » Vtk » Version: 5.0.4

cpe:2.3:a:vtk:vtk:5.0.4
Vtk » Vtk » Version: 5.10.0

cpe:2.3:a:vtk:vtk:5.10.0
Vtk » Vtk » Version: 5.10.1

cpe:2.3:a:vtk:vtk:5.10.1
Vtk » Vtk » Version: 5.2.0

cpe:2.3:a:vtk:vtk:5.2.0
Vtk » Vtk » Version: 5.2.1

cpe:2.3:a:vtk:vtk:5.2.1
Vtk » Vtk » Version: 5.4.0

cpe:2.3:a:vtk:vtk:5.4.0
Vtk » Vtk » Version: 5.4.2

cpe:2.3:a:vtk:vtk:5.4.2
Vtk » Vtk » Version: 5.6.0

cpe:2.3:a:vtk:vtk:5.6.0
Vtk » Vtk » Version: 5.6.1

cpe:2.3:a:vtk:vtk:5.6.1
Vtk » Vtk » Version: 5.8.0

cpe:2.3:a:vtk:vtk:5.8.0
Vtk » Vtk » Version: 6.0.0

cpe:2.3:a:vtk:vtk:6.0.0
Vtk » Vtk » Version: 6.1.0

cpe:2.3:a:vtk:vtk:6.1.0
Vtk » Vtk » Version: 6.2.0rc1

cpe:2.3:a:vtk:vtk:6.2.0rc1
Vtk » Vtk » Version: 6.3.0

cpe:2.3:a:vtk:vtk:6.3.0
Vtk » Vtk » Version: 7.0.0

cpe:2.3:a:vtk:vtk:7.0.0
Vtk » Vtk » Version: 7.1.0

cpe:2.3:a:vtk:vtk:7.1.0
Vtk » Vtk » Version: 7.1.1

cpe:2.3:a:vtk:vtk:7.1.1
Vtk » Vtk » Version: 8.0.0

cpe:2.3:a:vtk:vtk:8.0.0
Vtk » Vtk » Version: 8.0.1

cpe:2.3:a:vtk:vtk:8.0.1
Vtk » Vtk » Version: 8.1.0

cpe:2.3:a:vtk:vtk:8.1.0
Vtk » Vtk » Version: 8.1.1

cpe:2.3:a:vtk:vtk:8.1.1
Vtk » Vtk » Version: 8.1.2

cpe:2.3:a:vtk:vtk:8.1.2
Vtk » Vtk » Version: 8.2.0

cpe:2.3:a:vtk:vtk:8.2.0
Vtk » Vtk » Version: 9.0.0

cpe:2.3:a:vtk:vtk:9.0.0
Vtk » Vtk » Version: 9.0.1

cpe:2.3:a:vtk:vtk:9.0.1
Vtk » Vtk » Version: 9.0.2

cpe:2.3:a:vtk:vtk:9.0.2
Vtk » Vtk » Version: 9.0.3

cpe:2.3:a:vtk:vtk:9.0.3
Vtk » Vtk » Version: 9.1.0

cpe:2.3:a:vtk:vtk:9.1.0
Vtk » Vtk » Version: 9.2.0

cpe:2.3:a:vtk:vtk:9.2.0
Vtk » Vtk » Version: 9.2.1

cpe:2.3:a:vtk:vtk:9.2.1
Vtk » Vtk » Version: 9.2.2

cpe:2.3:a:vtk:vtk:9.2.2
Vtk » Vtk » Version: 9.2.3

cpe:2.3:a:vtk:vtk:9.2.3
Vtk » Vtk » Version: 9.2.4

cpe:2.3:a:vtk:vtk:9.2.4
Vtk » Vtk » Version: 9.2.5

cpe:2.3:a:vtk:vtk:9.2.5
Vtk » Vtk » Version: 9.2.6

cpe:2.3:a:vtk:vtk:9.2.6
Vtk » Vtk » Version: 9.3.0

cpe:2.3:a:vtk:vtk:9.3.0
Vtk » Vtk » Version: 9.3.1

cpe:2.3:a:vtk:vtk:9.3.1
Vtk » Vtk » Version: 9.4.0

cpe:2.3:a:vtk:vtk:9.4.0
Vtk » Vtk » Version: 9.4.1

cpe:2.3:a:vtk:vtk:9.4.1
Vtk » Vtk » Version: 9.4.2

cpe:2.3:a:vtk:vtk:9.4.2
Vtk » Vtk » Version: 9.5.0

cpe:2.3:a:vtk:vtk:9.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-57107

Products

Pricing

Contact Us