CVE-2025-31163

MEDIUM

fig2dev 3.2.9a - Denial of Service via put_patternarc Function

Title source: llm

Segmentation fault in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via put_patternarc function.

Core 2

Core References

Mailing List

Exploit, Issue Tracking

CVSS v3 6.6

EPSS 0.0017

EPSS Percentile 6.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-476

Status published

Products (1)

fig2dev_project/fig2dev 3.2.9a

Published Mar 28, 2025

Tracked Since Feb 18, 2026