CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-6196

A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file size calculations when opening specially crafted EPUB files, leading to incorrect memory allocations. This issue causes the application to crash. Known affected usage includes desktop services like Tumbler, which may process malicious files automatically when browsing directories. While no direct remote attack vectors are confirmed, any application using libgepub to parse user-supplied EPUB content could be vulnerable to a denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.9%

CVSS Severity

CVSS v3 Score 5.5

References

https://access.redhat.com/security/cve/CVE-2025-6196
https://bugzilla.redhat.com/show_bug.cgi?id=2373117
https://gitlab.gnome.org/GNOME/libgepub/-/issues/18

Products affected by CVE-2025-6196

Gnome » Libgepub » Version: N/A

cpe:2.3:a:gnome:libgepub:-
Redhat » Enterprise Linux » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-6196

Products

Pricing

Contact Us