cbcvebase.
CVE-2025-11731
published 2025-10-14

CVE-2025-11731: A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type handling, the…

PriorityP411low3.1CVSS 3.1
AVNACHPRNUIRSUCNINAL
EPSS
0.26%
17.1th percentile
A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type handling, the function may treat an XML document node as a regular XML element node, resulting in a type confusion. This can cause unexpected memory reads and potential crashes. While difficult to exploit, the flaw could lead to application instability or denial of service.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianlibxslt< libxslt 1.1.43-0.3 (forky)libxslt 1.1.43-0.3 (forky)
msrcazl3_libxslt_1.1.43-1_on_azure_linux_3.0
msrcazl3_libxslt_1.1.43-3_on_azure_linux_3.0
msrccbl2_libxslt_1.1.34-8_on_cbl_mariner_2.0
msrccbl2_libxslt_1.1.34-9_on_cbl_mariner_2.0
xmlsoftlibxslt>= 0 < 1.1.43-0.31.1.43-0.3

CVSS provenance

nvdv3.13.1LOWCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
osv3.1LOW
vendor_debian3.1LOW
vendor_msrc3.1LOW
vendor_redhat3.1LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.