CVE-2025-14087CRITICAL 5.6EPSS p50.2%

CVE-2025-14087CVE-2025-14087

gnome / glib

Description

A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of service or potential code execution via a buffer-underflow in the GVariant parser when processing maliciously crafted input strings.

Scoring

CVSS 3.15.6 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
EPSS0.75% probability of exploitation · percentile 50.2% · 2026-06-18T12:00:27Z
Published2025-12-10
Last modified2026-06-10

Underlying weaknesses· 1

CWE-190

References

  1. https://access.redhat.com/errata/RHSA-2026:15953
  2. https://access.redhat.com/errata/RHSA-2026:15969
  3. https://access.redhat.com/errata/RHSA-2026:15971
  4. https://access.redhat.com/errata/RHSA-2026:19148
  5. https://access.redhat.com/errata/RHSA-2026:19361
  6. https://access.redhat.com/errata/RHSA-2026:19452
  7. https://access.redhat.com/errata/RHSA-2026:19457
  8. https://access.redhat.com/errata/RHSA-2026:19459

1

TypeTargetConfidenceTier
WeaknessInteger Overflow or Wraparoundcwe-1900%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-14512
CVE
CVE-2026-1489
CVE
CVE-2025-6052
CVE
CVE-2025-13601
CVE
CVE-2026-5201
CVE
CVE-2026-1484
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.