CVE-2025-5099 | THREATINT

Description

An Out of Bounds Write occurs when the native library attempts PDF rendering, which can be exploited to achieve memory corruption and potentially arbitrary code execution.

PUBLISHED Reserved 2025-05-22 | Published 2025-05-23 | Updated 2025-05-23 | Assigner KoreLogic

Problem types

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-787 Out-of-bounds Write

Product status

Default status

affected

12.15.01

affected

Credits

This vulnerability was discovered by Felix Segoviano of KoreLogic, Inc. finder

References

korelogic.com/Resources/Advisories/KL-001-2025-004.txt exploit

korelogic.com/Resources/Advisories/KL-001-2025-004.txt third-party-advisory

cve.org (CVE-2025-5099)

nvd.nist.gov (CVE-2025-5099)

Download JSON