CVE-2025-7425 — Use After Free in Libxslt

CWE-416 — Use After Free18 documents9 sources

Severity

7.8HIGHNVD

OSV7.5

EPSS

0.1%

top 81.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gnome Libxml2 Xmlsoft Libxml2 Apple IOS 18.6 AND Ipados +13 more

Timeline

PublishedJul 10

Latest updateJan 15

Description

A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:HExploitability: 1.4 | Impact: 5.8

Affected Packages16 packages

▶debiandebian/libxslt

▶msrcmsrc/azl3_libxslt_1.1.43-1_on_azure_linux_3.0

▶msrcmsrc/azl3_libxslt_1.1.43-3_on_azure_linux_3.0

▶msrcmsrc/cbl2_libxslt_1.1.34-8_on_cbl_mariner_2.0

▶msrcmsrc/cbl2_libxslt_1.1.34-9_on_cbl_mariner_2.0

🔴Vulnerability Details

OSV

libxml2 vulnerabilities↗2025-11-27

▶

GHSA

GHSA-8c4w-j52q-j4jq: A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management↗2025-07-10

▶

OSV

CVE-2025-7425: A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management↗2025-07-10

▶

📋Vendor Advisories

Oracle

Oracle Oracle Java SE Risk Matrix: JavaFX (libxslt) — CVE-2025-7425↗2026-01-15

▶

Ubuntu

libxml2 vulnerability↗2025-11-27

▶

Ubuntu

libxml2 vulnerabilities↗2025-11-27

▶

Ubuntu

libxml2 vulnerability↗2025-10-30

▶

Oracle

Oracle Oracle Communications Risk Matrix: Configuration (libxml2) — CVE-2025-7425↗2025-10-15

▶