CVE-2025-56225 | THREATINT

Description

fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_monopoly.c, that can be triggered when loading an invalid midi file.

PUBLISHED Reserved 2025-08-16 | Published 2026-01-09 | Updated 2026-01-12 | Assigner mitre

References

github.com/FluidSynth/fluidsynth/issues/1602 exploit

github.com/FluidSynth/fluidsynth/issues/1602

github.com/FluidSynth/fluidsynth/pull/1607

cve.org (CVE-2025-56225)

nvd.nist.gov (CVE-2025-56225)

Download JSON