CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-57108

Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap use-after-free vulnerability in vtkGLTFDocumentLoader. The vulnerability manifests during mesh object copy operations where vector members are accessed after the underlying memory has been freed, specifically when handling GLTF files with corrupted or invalid mesh reference structures.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.7%

CVSS Severity

CVSS v3 Score 9.8

References

https://gitlab.kitware.com/vtk/vtk/-/issues/19736

Products affected by CVE-2025-57108

Vtk » Vtk » Version: N/A

cpe:2.3:a:vtk:vtk:-
Vtk » Vtk » Version: 2.4.0

cpe:2.3:a:vtk:vtk:2.4.0
Vtk » Vtk » Version: 3.1.1

cpe:2.3:a:vtk:vtk:3.1.1
Vtk » Vtk » Version: 3.1.2

cpe:2.3:a:vtk:vtk:3.1.2
Vtk » Vtk » Version: 3.2.0

cpe:2.3:a:vtk:vtk:3.2.0
Vtk » Vtk » Version: 4.0.2

cpe:2.3:a:vtk:vtk:4.0.2
Vtk » Vtk » Version: 4.2.0

cpe:2.3:a:vtk:vtk:4.2.0
Vtk » Vtk » Version: 4.2.1

cpe:2.3:a:vtk:vtk:4.2.1
Vtk » Vtk » Version: 4.2.2

cpe:2.3:a:vtk:vtk:4.2.2
Vtk » Vtk » Version: 4.2.3

cpe:2.3:a:vtk:vtk:4.2.3
Vtk » Vtk » Version: 4.2.4

cpe:2.3:a:vtk:vtk:4.2.4
Vtk » Vtk » Version: 4.2.5

cpe:2.3:a:vtk:vtk:4.2.5
Vtk » Vtk » Version: 4.2.6

cpe:2.3:a:vtk:vtk:4.2.6
Vtk » Vtk » Version: 4.4.0

cpe:2.3:a:vtk:vtk:4.4.0
Vtk » Vtk » Version: 4.4.1

cpe:2.3:a:vtk:vtk:4.4.1
Vtk » Vtk » Version: 4.4.2

cpe:2.3:a:vtk:vtk:4.4.2
Vtk » Vtk » Version: 5.0.0

cpe:2.3:a:vtk:vtk:5.0.0
Vtk » Vtk » Version: 5.0.1

cpe:2.3:a:vtk:vtk:5.0.1
Vtk » Vtk » Version: 5.0.2

cpe:2.3:a:vtk:vtk:5.0.2
Vtk » Vtk » Version: 5.0.3

cpe:2.3:a:vtk:vtk:5.0.3
Vtk » Vtk » Version: 5.0.4

cpe:2.3:a:vtk:vtk:5.0.4
Vtk » Vtk » Version: 5.10.0

cpe:2.3:a:vtk:vtk:5.10.0
Vtk » Vtk » Version: 5.10.1

cpe:2.3:a:vtk:vtk:5.10.1
Vtk » Vtk » Version: 5.2.0

cpe:2.3:a:vtk:vtk:5.2.0
Vtk » Vtk » Version: 5.2.1

cpe:2.3:a:vtk:vtk:5.2.1
Vtk » Vtk » Version: 5.4.0

cpe:2.3:a:vtk:vtk:5.4.0
Vtk » Vtk » Version: 5.4.2

cpe:2.3:a:vtk:vtk:5.4.2
Vtk » Vtk » Version: 5.6.0

cpe:2.3:a:vtk:vtk:5.6.0
Vtk » Vtk » Version: 5.6.1

cpe:2.3:a:vtk:vtk:5.6.1
Vtk » Vtk » Version: 5.8.0

cpe:2.3:a:vtk:vtk:5.8.0
Vtk » Vtk » Version: 6.0.0

cpe:2.3:a:vtk:vtk:6.0.0
Vtk » Vtk » Version: 6.1.0

cpe:2.3:a:vtk:vtk:6.1.0
Vtk » Vtk » Version: 6.2.0rc1

cpe:2.3:a:vtk:vtk:6.2.0rc1
Vtk » Vtk » Version: 6.3.0

cpe:2.3:a:vtk:vtk:6.3.0
Vtk » Vtk » Version: 7.0.0

cpe:2.3:a:vtk:vtk:7.0.0
Vtk » Vtk » Version: 7.1.0

cpe:2.3:a:vtk:vtk:7.1.0
Vtk » Vtk » Version: 7.1.1

cpe:2.3:a:vtk:vtk:7.1.1
Vtk » Vtk » Version: 8.0.0

cpe:2.3:a:vtk:vtk:8.0.0
Vtk » Vtk » Version: 8.0.1

cpe:2.3:a:vtk:vtk:8.0.1
Vtk » Vtk » Version: 8.1.0

cpe:2.3:a:vtk:vtk:8.1.0
Vtk » Vtk » Version: 8.1.1

cpe:2.3:a:vtk:vtk:8.1.1
Vtk » Vtk » Version: 8.1.2

cpe:2.3:a:vtk:vtk:8.1.2
Vtk » Vtk » Version: 8.2.0

cpe:2.3:a:vtk:vtk:8.2.0
Vtk » Vtk » Version: 9.0.0

cpe:2.3:a:vtk:vtk:9.0.0
Vtk » Vtk » Version: 9.0.1

cpe:2.3:a:vtk:vtk:9.0.1
Vtk » Vtk » Version: 9.0.2

cpe:2.3:a:vtk:vtk:9.0.2
Vtk » Vtk » Version: 9.0.3

cpe:2.3:a:vtk:vtk:9.0.3
Vtk » Vtk » Version: 9.1.0

cpe:2.3:a:vtk:vtk:9.1.0
Vtk » Vtk » Version: 9.2.0

cpe:2.3:a:vtk:vtk:9.2.0
Vtk » Vtk » Version: 9.2.1

cpe:2.3:a:vtk:vtk:9.2.1
Vtk » Vtk » Version: 9.2.2

cpe:2.3:a:vtk:vtk:9.2.2
Vtk » Vtk » Version: 9.2.3

cpe:2.3:a:vtk:vtk:9.2.3
Vtk » Vtk » Version: 9.2.4

cpe:2.3:a:vtk:vtk:9.2.4
Vtk » Vtk » Version: 9.2.5

cpe:2.3:a:vtk:vtk:9.2.5
Vtk » Vtk » Version: 9.2.6

cpe:2.3:a:vtk:vtk:9.2.6
Vtk » Vtk » Version: 9.3.0

cpe:2.3:a:vtk:vtk:9.3.0
Vtk » Vtk » Version: 9.3.1

cpe:2.3:a:vtk:vtk:9.3.1
Vtk » Vtk » Version: 9.4.0

cpe:2.3:a:vtk:vtk:9.4.0
Vtk » Vtk » Version: 9.4.1

cpe:2.3:a:vtk:vtk:9.4.1
Vtk » Vtk » Version: 9.4.2

cpe:2.3:a:vtk:vtk:9.4.2
Vtk » Vtk » Version: 9.5.0

cpe:2.3:a:vtk:vtk:9.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-57108

Products

Pricing

Contact Us