CVE-2025-31164 – Securitricks

216.73.217.22

CVE-2025-31164

· Published 28/03/2025 18:15 · Modified 28/03/2025 18:15

Labels: CVE-2025-31164 2025-03-28 74b3a70d-cca6-4d34-9789-e83b222ae3be CVE-2025-31164 CWE-122

Essential information

Published: 28/03/2025 18:15
Modified: 28/03/2025 18:15
Author: —
Creator: —
CVSS: 6.6 MEDIUM (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CVSS metrics

Description

heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via create_line_with_spline.

NVD status

Status: Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 74b3a70d-cca6-4d34-9789-e83b222ae3be
NVD: View on NVD

Affected products (CPE)

Product	CPE
fig2dev / fig2dev	`cpe:2.3:a:fig2dev:fig2dev:3.2.9a:::::::*`

References