CVE-2025-2722
GNOME libgsf gsf_prop_settings_collect_va heap-based overflow
Severity Score
4.8
*CVSS v4
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
A vulnerability was found in GNOME libgsf up to 1.14.53. It has been declared as critical. This vulnerability affects the function gsf_prop_settings_collect_va. The manipulation of the argument n_alloced_params leads to heap-based buffer overflow. Local access is required to approach this attack. The vendor was contacted early about this disclosure but did not respond in any way.
In GNOME libgsf bis 1.14.53 wurde eine Schwachstelle ausgemacht. Sie wurde als kritisch eingestuft. Betroffen ist die Funktion gsf_prop_settings_collect_va. Mit der Manipulation des Arguments n_alloced_params mit unbekannten Daten kann eine heap-based buffer overflow-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs hat dabei lokal zu erfolgen.
*Credits:
ninpwn
CVSS Scores
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
System
Vulnerable | Subsequent
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2025-03-24 CVE Reserved
- 2025-03-25 CVE Published
- 2025-03-25 CVE Updated
- 2025-03-31 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-122: Heap-based Buffer Overflow
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://vuldb.com/?id.300742 | Technical Description | |
| https://vuldb.com/?submit.520182 | Third Party Advisory | |
| https://www.gnome.org | Product |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.0 Search vendor "GNOME" for product "Libgsf" and version "1.14.0" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.1 Search vendor "GNOME" for product "Libgsf" and version "1.14.1" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.2 Search vendor "GNOME" for product "Libgsf" and version "1.14.2" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.3 Search vendor "GNOME" for product "Libgsf" and version "1.14.3" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.4 Search vendor "GNOME" for product "Libgsf" and version "1.14.4" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.5 Search vendor "GNOME" for product "Libgsf" and version "1.14.5" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.6 Search vendor "GNOME" for product "Libgsf" and version "1.14.6" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.7 Search vendor "GNOME" for product "Libgsf" and version "1.14.7" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.8 Search vendor "GNOME" for product "Libgsf" and version "1.14.8" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.9 Search vendor "GNOME" for product "Libgsf" and version "1.14.9" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.10 Search vendor "GNOME" for product "Libgsf" and version "1.14.10" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.11 Search vendor "GNOME" for product "Libgsf" and version "1.14.11" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.12 Search vendor "GNOME" for product "Libgsf" and version "1.14.12" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.13 Search vendor "GNOME" for product "Libgsf" and version "1.14.13" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.14 Search vendor "GNOME" for product "Libgsf" and version "1.14.14" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.15 Search vendor "GNOME" for product "Libgsf" and version "1.14.15" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.16 Search vendor "GNOME" for product "Libgsf" and version "1.14.16" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.17 Search vendor "GNOME" for product "Libgsf" and version "1.14.17" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.18 Search vendor "GNOME" for product "Libgsf" and version "1.14.18" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.19 Search vendor "GNOME" for product "Libgsf" and version "1.14.19" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.20 Search vendor "GNOME" for product "Libgsf" and version "1.14.20" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.21 Search vendor "GNOME" for product "Libgsf" and version "1.14.21" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.22 Search vendor "GNOME" for product "Libgsf" and version "1.14.22" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.23 Search vendor "GNOME" for product "Libgsf" and version "1.14.23" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.24 Search vendor "GNOME" for product "Libgsf" and version "1.14.24" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.25 Search vendor "GNOME" for product "Libgsf" and version "1.14.25" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.26 Search vendor "GNOME" for product "Libgsf" and version "1.14.26" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.27 Search vendor "GNOME" for product "Libgsf" and version "1.14.27" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.28 Search vendor "GNOME" for product "Libgsf" and version "1.14.28" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.29 Search vendor "GNOME" for product "Libgsf" and version "1.14.29" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.30 Search vendor "GNOME" for product "Libgsf" and version "1.14.30" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.31 Search vendor "GNOME" for product "Libgsf" and version "1.14.31" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.32 Search vendor "GNOME" for product "Libgsf" and version "1.14.32" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.33 Search vendor "GNOME" for product "Libgsf" and version "1.14.33" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.34 Search vendor "GNOME" for product "Libgsf" and version "1.14.34" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.35 Search vendor "GNOME" for product "Libgsf" and version "1.14.35" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.36 Search vendor "GNOME" for product "Libgsf" and version "1.14.36" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.37 Search vendor "GNOME" for product "Libgsf" and version "1.14.37" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.38 Search vendor "GNOME" for product "Libgsf" and version "1.14.38" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.39 Search vendor "GNOME" for product "Libgsf" and version "1.14.39" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.40 Search vendor "GNOME" for product "Libgsf" and version "1.14.40" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.41 Search vendor "GNOME" for product "Libgsf" and version "1.14.41" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.42 Search vendor "GNOME" for product "Libgsf" and version "1.14.42" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.43 Search vendor "GNOME" for product "Libgsf" and version "1.14.43" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.44 Search vendor "GNOME" for product "Libgsf" and version "1.14.44" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.45 Search vendor "GNOME" for product "Libgsf" and version "1.14.45" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.46 Search vendor "GNOME" for product "Libgsf" and version "1.14.46" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.47 Search vendor "GNOME" for product "Libgsf" and version "1.14.47" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.48 Search vendor "GNOME" for product "Libgsf" and version "1.14.48" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.49 Search vendor "GNOME" for product "Libgsf" and version "1.14.49" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.50 Search vendor "GNOME" for product "Libgsf" and version "1.14.50" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.51 Search vendor "GNOME" for product "Libgsf" and version "1.14.51" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.52 Search vendor "GNOME" for product "Libgsf" and version "1.14.52" | en |
Affected
| ||||||
| GNOME Search vendor "GNOME" | Libgsf Search vendor "GNOME" for product "Libgsf" | 1.14.53 Search vendor "GNOME" for product "Libgsf" and version "1.14.53" | en |
Affected
| ||||||