Critical Vulnerability Information Vulnerability ID: VDB-341709 CVE ID: CVE-2025-15537 Issue Number: 4543 Severity and Scoring CVSS Meta Temp Score: 5.0 Current Exploit Price: $0-$5k CTI Interest Score: 1.80 Summary A critical vulnerability has been reported in Mapnik up to version 4.2.0. The function in the file is affected. Manipulation of this function can lead to a heap-based buffer overflow. The vulnerability is assigned CVE-2025-15537. The attack must be initiated from a local position. An exploit is available. The project has not yet responded. Details A vulnerability was discovered in Mapnik up to version 4.2.0. The function is impacted and has been classified as critical. Manipulation using unknown input triggers a heap-based overflow vulnerability. This issue is categorized by CWE as CWE-122. A heap overflow occurs when a buffer allocated on the heap is overwritten, typically allocated via functions like . This affects confidentiality, integrity, and availability. Advisory: Shared at github.com Vulnerability Identifier: CVE-2025-15537 Exploitation: Easy, requires local initiation Exploit: Public proof-of-concept available on github.com