CVE-2025-8735 | GNU cflow up to 1.8 Lexer c.c yylex null pointer dereference

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the component Lexer. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2025-8735. An attack has to be approached locally. Furthermore, there is an exploit available.

CVE-2025-8735 | GNU cflow up to 1.8 Lexer c.c yylex null pointer dereference

Post correlati

CVE-2024-13786 | Education Center Plugin up to 3.6.10 on WordPress themerex_callback_view_more_posts deserialization

CVE-2024-2633 | Cegid Meta4 HR 819.001.022 dumpenv.jsp lang cross site scripting

CVE-2024-22817 | FlyCMS 1.0 email_conf_updagte cross-site request forgery

CVE-2024-9161 | Rank Math SEO Plugin up to 1.0.228 on WordPress authorization