CVE-2025-1181

Published Feb 11, 2025

Last updated 12 days ago

CVSS low 2.3

Overview

Description
A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The name of the patch is 931494c9a89558acb36a03a340c01726545eef24. It is recommended to apply a patch to fix this issue.
Source
cna@vuldb.com
NVD status
Awaiting Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
2.3
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
LOW

CVSS 3.1

Type
Secondary
Base score
5
Impact score
3.4
Exploitability score
1.6
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
Severity
MEDIUM

CVSS 2.0

Type
Secondary
Base score
5.1
Impact score
6.4
Exploitability score
4.9
Vector string
AV:N/AC:H/Au:N/C:P/I:P/A:P

Weaknesses

cna@vuldb.com
CWE-119

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-1181 🟢 LOW (2.3) 🏢 GNU - Binutils 🏗️ 2.43 🔗 https://t.co/P7TNlxKhtQ 🔗 https://t.co/tj8iYbGJGW 🔗 https://t.co/xCI8KAKeYn 🔗 https://t.co/0L5l89vuYG 🔗 https://t.co/X4ZpXVsD7D 🔗 https://t.co/9H58jNt4uf https://t.co/1Xh8uMO3fO

    @cybercronai

    12 Feb 2025

    11 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2025-1181 A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file bfd/elflink.c of the co… https://t.co/mY32EvrXVj

    @CVEnew

    11 Feb 2025

    385 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. New post from https://t.co/uXvPWJy6tj (CVE-2025-1181 | GNU Binutils 2.43 ld bfd/elflink.c _bfd_elf_gc_mark_rsec memory corruption) has been published on https://t.co/mIhSaU0jds

    @WolfgangSesin

    10 Feb 2025

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References