4.8
CVE-2025-4373
- EPSS 0.47%
- Veröffentlicht 06.05.2025 14:48:39
- Zuletzt bearbeitet 30.06.2026 11:16:21
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
HerstellerSiemens
≫
Produkt
RUGGEDCOM RST2428P
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XC-300/XR-300/XC-400/XR-500WG/XR-500 family
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCH328
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCM324
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCM328
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XCM332
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRH334 (24 V DC, 8xFO, CC)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (230 V AC, 12xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (230 V AC, 8xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (230V AC, 2x10G, 24xSFP, 8xSFP+)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (24 V DC, 12xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (24 V DC, 8xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (24V DC, 2x10G, 24xSFP, 8xSFP+)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (2x230 V AC, 12xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (2x230 V AC, 8xFO)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SCALANCE XRM334 (2x230V AC, 2x10G, 24xSFP, 8xSFP+)
Default Statusunknown
Version
0
Version <
V3.3
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
HerstellerSiemens
≫
Produkt
SIPLUS S7-1500 CPU 1518-4 PN/DP MFP
Default Statusunknown
Version
V3.1.5
Version <
*
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.47% | 0.371 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secalert@redhat.com | 4.8 | 2.2 | 2.5 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
|
CWE-124 Buffer Underwrite ('Buffer Underflow')
The product writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.
https://access.redhat.com/security/cve/CVE-2025-4373
https://bugzilla.redhat.com/show_bug.cgi?id=2364265
https://access.redhat.com/errata/RHSA-2025:10855
https://access.redhat.com/errata/RHSA-2025:11140
https://access.redhat.com/errata/RHSA-2025:11327
https://access.redhat.com/errata/RHSA-2025:11373
https://access.redhat.com/errata/RHSA-2025:11374
https://access.redhat.com/errata/RHSA-2025:11662
https://gitlab.gnome.org/GNOME/glib/-/issues/3677
https://access.redhat.com/errata/RHSA-2025:12275
https://access.redhat.com/errata/RHSA-2025:13335
https://access.redhat.com/errata/RHSA-2025:14988
https://access.redhat.com/errata/RHSA-2025:14989
https://access.redhat.com/errata/RHSA-2025:14990
https://access.redhat.com/errata/RHSA-2025:14991
https://cert-portal.siemens.com/productcert/html/ssa-082556.html
https://cert-portal.siemens.com/productcert/html/ssa-089022.html