CVE-2025-6516— HDF5 H5Fint.c H5F_addr_decode_len heap-based overflow

CVSS 5.3 · Medium EPSS 0.15% · P35 Updated Jul 05, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-6516

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

HDF5 H5Fint.c H5F_addr_decode_len heap-based overflow

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability has been found in HDF5 up to 1.14.6 and classified as critical. This vulnerability affects the function H5F_addr_decode_len of the file /hdf5/src/H5Fint.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

堆缓冲区溢出

Source: NVD (National Vulnerability Database)

Vulnerability Title

HDF5 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HDF5是HDF开源的一个库。 HDF5 1.14.6及之前版本存在安全漏洞，该漏洞源于H5Fint.c文件中H5F_addr_decode_len函数存在堆缓冲区溢出。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	HDF5	1.14.0	-

II. Public POCs for CVE-2025-6516

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-6516

请登录查看更多情报信息。

Same Patch Batch · n/a · 2025-06-23 · 18 CVEs total

CVE-2023-47297		NCR Atleos Terminal Handler 安全漏洞
CVE-2025-23092		Mitel OpenScape Accounting Management 安全漏洞
CVE-2025-46101		Beakon Learning Management System Sharable Content Object Reference Model 安全漏洞
CVE-2025-50349		PHPGurukul Pre-School Enrollment System Project 安全漏洞
CVE-2025-50348		PHPGurukul Pre-School Enrollment System Project 安全漏洞
CVE-2025-44528		Texas Instruments LP-CC2652RB SimpleLink CC13XX CC26XX SDK 安全漏洞
CVE-2025-48700		Zimbra Collaboration 安全漏洞
CVE-2025-48026		Mitel OpenScape Xpressions 安全漏洞
CVE-2023-47294		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-48978		NCR Atleos ITM Web terminal 安全漏洞
CVE-2023-47298		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-47031		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-47030		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-47029		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-47032		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-47295		NCR Atleos Terminal Handler 安全漏洞
CVE-2023-50450		Sensopart VISOR Vision Sensors 安全漏洞

IV. Related Vulnerabilities

Same product: HDF5

Same vendor: n/a

Same weakness: CWE-122

V. Comments for CVE-2025-6516

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-6516— HDF5 H5Fint.c H5F_addr_decode_len heap-based overflow

I. Basic Information for CVE-2025-6516

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-6516

III. Intelligence Information for CVE-2025-6516

Same Patch Batch · n/a · 2025-06-23 · 18 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-6516

Leave a comment