CVE-2025-31178 — Vulnetix

CVE-2025-31178 PUBLISHED CVSS 6.199999809265137 MEDIUM

A flaw was found in gnuplot. The GetAnnotateString() function may lead to a segmentation fault and cause a system crash.

EPSS 0.03% · 10.3th percentile

Risk Scores

CVSS 3.1

6.199999809265137

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score

0.03%

10.3th percentile

Affected Products

Vendor	Product	Versions
Red Hat	Red Hat Enterprise Linux 7
Red Hat	Red Hat Enterprise Linux 8
Red Hat	Red Hat Enterprise Linux 6
gnuplot	gnuplot	0
		0

Exploit Intelligence

CIRCL seen: CVE-2025-31178 (circl-sighting)
https://access.redhat.com/security/cve/CVE-2025-31178 (circl)
RHBZ#2355341 (circl)

Timeline

Mar 27, 2025 Coalition ESS Score
Mar 27, 2025 CVE Published
Mar 28, 2025 EPSS Score
Apr 10, 2025 EPSS Score
Apr 23, 2025 EPSS Score
May 6, 2025 EPSS Score
May 19, 2025 EPSS Score
Jun 1, 2025 EPSS Score
Jun 14, 2025 EPSS Score
Jun 27, 2025 EPSS Score
Jul 1, 2025 Coalition ESS Score
Jul 10, 2025 EPSS Score

References

https://access.redhat.com/security/cve/CVE-2025-31178 vdb
RHBZ#2355341 issue
https://nvd.nist.gov/vuln/detail/CVE-2025-31178 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›