CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-65410

A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service (DoS) via injecting a crafted input into the filename parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.4%

CVSS Severity

CVSS v3 Score 6.2

References

https://github.com/MAXEUR5/Vulnerability_Disclosures/blob/main/2025/CVE-2025-65410.md
https://hg.savannah.gnu.org/hgweb/unrtf/rev/a5d3b025a8b1
https://lists.gnu.org/archive/html/bug-unrtf/2025-11/msg00001.html
https://savannah.gnu.org/projects/unrtf/
https://www.gnu.org/software/unrtf/

Products affected by CVE-2025-65410

Unrtf Project » Unrtf » Version: 0.21.10

cpe:2.3:a:unrtf_project:unrtf:0.21.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-65410

Products

Pricing

Contact Us