CVE-2019-25048

HIGH

LibreSSL <3.2.1 - Buffer Overflow

Title source: llm
STIX 2.1

Description

LibreSSL 2.9.1 through 3.2.1 has a heap-based buffer over-read in do_print_ex (called from asn1_item_print_ctx and ASN1_item_print).

References (3)

Core 3

Scores

CVSS v3 7.1
EPSS 0.0022
EPSS Percentile 44.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

Details

CWE
CWE-125
Status published
Products (1)
openbsd/libressl 2.9.1 - 3.2.1
Published Jul 01, 2021
Tracked Since Feb 18, 2026