CVE-2025-6856 – HDF5 Use After Free Vulnerability

CVE ID : CVE-2025-6856

Published : June 29, 2025, 10:15 a.m. | 1 hour, 44 minutes ago

Description : A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FL__reg_gc_list of the file src/H5FL.c. The manipulation leads to use after free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…