CVE-2025-11731 — Type Confusion in Libxslt

CWE-843 — Type Confusion6 documents6 sources

Severity

3.1LOWNVD

EPSS

0.1%

top 77.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Xmlsoft Libxslt Debian Libxslt Msrc Azl3 Libxslt 1.1.43-1 ON Azure Linux 3.0 +3 more

Timeline

PublishedOct 14

Description

A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type handling, the function may treat an XML document node as a regular XML element node, resulting in a type confusion. This can cause unexpected memory reads and potential crashes. While difficult to exploit, the flaw could lead to application instability or denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 1.6 | Impact: 1.4

Affected Packages6 packages

▶debiandebian/libxslt< libxslt 1.1.43-0.3 (forky)

▶Debianxmlsoft/libxslt< 1.1.43-0.3

▶msrcmsrc/azl3_libxslt_1.1.43-1_on_azure_linux_3.0

▶msrcmsrc/azl3_libxslt_1.1.43-3_on_azure_linux_3.0

▶msrcmsrc/cbl2_libxslt_1.1.34-8_on_cbl_mariner_2.0

🔴Vulnerability Details

GHSA

GHSA-9f23-58rv-2hx4: A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT elements during stylesheet parsing↗2025-10-14

▶

OSV

CVE-2025-11731: A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT elements during stylesheet parsing↗2025-10-14

▶

📋Vendor Advisories

Microsoft

Libxslt: type confusion in exsltfuncresultcompfunction of libxslt↗2025-10-14

▶

Red Hat

libxslt: Type Confusion in exsltFuncResultCompfunction of libxslt↗2025-10-14

▶

Debian

CVE-2025-11731: libxslt - A flaw was found in the exsltFuncResultComp() function of libxslt, which handles...↗2025

▶