COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2025-14087

CVE-2025-14087

Severity
medium
Source
NVD · cve
Published
2025-12-10
CVSS
5.6
Reference
https://nvd.nist.gov/vuln/detail/CVE-2025-14087
⚡ RCE shame 35/100 rce

A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.

Players implicated

gnome · vendorredhat · vendorenterprise linux · productglib · product

Description

A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.