VDB

CESS-2025-24855

CESS-2025-24855 PUBLISHED CVSS 7.8 HIGH

numbers.c in libxslt before 1.1.43 has a use-after-free because, in nested XPath evaluations, an XPath context node can be modified but never restored. This is related to xsltNumberFormatGetValue, xsltEvalXPathPredicate, xsltEvalXPathStringNs, and xsltComputeSortResultInternal.

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Timeline

  • Mar 14, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›