CVE-2025-53367 | DjvuNet DjVuLibre up to 3.5.28 MMRDecoder::scanruns out-of-bounds write (GHSL-2025-055)

Inserito da Angelo Barbosa | Lug 4, 2025 | CVE

A vulnerability, which was classified as critical, has been found in DjvuNet DjVuLibre up to 3.5.28. This issue affects the function MMRDecoder::scanruns. The manipulation leads to out-of-bounds write.

The identification of this vulnerability is CVE-2025-53367. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53367 | DjvuNet DjVuLibre up to 3.5.28 MMRDecoder::scanruns out-of-bounds write (GHSL-2025-055)

Post correlati

CVE-2024-25523 | RuvarOA 6.01/12.01 file_memo.aspx file_id sql injection

CVE-2024-22590 | Kwik 745fd4e2 TLS Engine state issue

CVE-2025-6920 | ai-inference-server API Inference Endpoint /invocations improper authentication

CVE-2023-51695 | WPEverest Everest Forms Plugin up to 2.0.4.1 on WordPress cross site scripting