Open Babel gamessformat.cpp ReadMolecule use after free_CVE-2025-10994

4.8 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A weakness has been identified in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. It is possible to launch the attack on the local host. The exploit has been made available to the public and could be exploited.

Basic Information

ID CVE-2025-10994

Source VulDB

Published Sep 26, 2025 at 02:02

Affected Product

Vendor n/a

Product Open Babel

Version 3.1.0

Affected Versions n/a Open Babel 3.1.0
n/a Open Babel 3.1.1

CWE Classification

CWE-416 CWE-119

References

{
    "lastseen": "",
    "description": "A weakness has been identified in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. It is possible to launch the attack on the local host. The exploit has been made available to the public and could be exploited.",
    "published": "2025-09-26T02:02:07.422Z",
    "modified": "2025-09-26T02:02:07.422Z",
    "type": "cve",
    "title": "Open Babel gamessformat.cpp ReadMolecule use after free",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.325922\nhttps://vuldb.com/?ctiid.325922\nhttps://vuldb.com/?submit.654057\nhttps://github.com/openbabel/openbabel/issues/2834\nhttps://github.com/user-attachments/files/22318611/poc.zip",
    "id": "CVE-2025-10994",
    "bulletinFamily": "",
    "cwe": [
        "CWE-416",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "n/a Open Babel 3.1.0\nn/a Open Babel 3.1.1",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Open Babel",
    "version": "3.1.0",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}