VDB
CVE-2025-25724
CVE-2025-25724
PUBLISHED
CVSS 8.699999809265137 HIGH
libarchive ist eine C Bibliothek und ein Kommandozeilen-Tool zum Lesen und Bearbeiten von tar, cpio, zip, ISO und anderen Formaten.
EPSS 0.03% · 8.6th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.03%
8.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Absolute | Absolute Secure Access Insights <4.30 | |
| Oracle | Oracle Linux | |
| Absolute | Absolute Secure Access Server <14.10 | |
| Open Source | Open Source libarchive 3.7.7 | |
| Red Hat | Red Hat Enterprise Linux | |
| SUSE | SUSE Linux | |
| Ubuntu | Ubuntu Linux | |
| IBM | IBM MQ | |
| SUSE | SUSE openSUSE | |
| IBM | IBM App Connect Enterprise <LTS 12.0.14 |
Exploit Intelligence
- https://github.com/Ekkosun/pocs/blob/main/bsdtarbug (nist-nvd)
- OPTFuzz (osv)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
- 3.yaml (github-poc)
…and 1 more exploits
Timeline
- Jan 21, 1970 GitHub Gist PoC
- Feb 7, 2025 CVE ID Reserved
- Mar 2, 2025 CVE Published
- Mar 2, 2025 EPSS Score
- Mar 4, 2025 CVE Updated
- Mar 11, 2025 Coalition ESS Score
- Mar 16, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 13, 2025 EPSS Score
- Apr 27, 2025 EPSS Score
- May 11, 2025 EPSS Score
- May 25, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0469.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0469 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2349221 advisory
- https://github.com/advisories/GHSA-722w-734r-qg74 advisory
- https://access.redhat.com/security/cve/CVE-2025-25724 advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/2VPBSF65DTMKEEGFEJY6QEGJSZY7TSKV/ advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-March/020576.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-March/020577.html advisory
- https://ubuntu.com/security/notices/USN-7454-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2025-June/021061.html advisory
- https://access.redhat.com/errata/RHSA-2025:9420 advisory
- https://linux.oracle.com/errata/ELSA-2025-9431.html advisory
- https://access.redhat.com/errata/RHSA-2025:9431 advisory
- https://linux.oracle.com/errata/ELSA-2025-9420.html advisory
- https://www.ibm.com/support/pages/node/7240431 advisory
- https://www.ibm.com/support/pages/node/7241565 advisory
- https://www.absolute.com/platform/security-information/vulnerability-archive/secure-access-1410 advisory
- https://ubuntu.com/security/notices/USN-8147-1 advisory
- https://access.redhat.com/errata/RHSA-2026:24383 advisory