VDB

DEBIAN-CVE-2025-7424

DEBIAN-CVE-2025-7424 PUBLISHED CVSS 7.5 HIGH

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of service or unexpected behavior.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Debian:11libxslt0, 1.1.34-4, 1.1.34-4+deb11u2
Debian:14libxslt1.1.35-1.2, 0, 1.1.35-1.2
Debian:13libxslt0, 0, 1.1.35-1.2
Debian:12libxslt1.1.35-1, 1.1.35-1+deb12u1, 1.1.35-1

Exploit Intelligence

Timeline

  • Jul 10, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›