CVE-2025-6494 – Nokogiri Heap-Based Buffer Overflow Vulnerability

June 22, 2025

CVE ID : CVE-2025-6494

Published : June 22, 2025, 11:15 p.m. | 1 hour, 39 minutes ago

Description : A vulnerability was found in sparklemotion nokogiri up to 1.18.7. It has been classified as problematic. This affects the function hashmap_get_with_hash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6496 – Apache Tidy Null Pointer Dereference Vulnerability

Next Article CVE-2025-6493 – CodeMirror Markdown Mode Regular Expression Complexity Remote Vulnerability

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

3 portable power stations I travel everywhere with (and how they differ)

I tried Lenovo’s new rollable ThinkBook and can’t go back to regular-sized screens

The Creators of the Acclaimed Silent Hill 2 Remake Present a Deep Dive Into the Story of Their Newest Horror Game IP — and It’s So Bizarre and Insane That It’s Convinced Me To Put It on My Wishlist

Forget Back to School Deals — Lenovo’s Clearance Sale is Where You’ll Find Amazing Discounts on Laptops, Mini PCs, and More, While Supplies Last

spatie/laravel-flare

spatie/laravel-flare

Establishing Consistent Data Foundations with Laravel’s Database Population System

Generate Postman Collections from Laravel Routes

The Creators of the Acclaimed Silent Hill 2 Remake Present a Deep Dive Into the Story of Their Newest Horror Game IP — and It’s So Bizarre and Insane That It’s Convinced Me To Put It on My Wishlist

The Creators of the Acclaimed Silent Hill 2 Remake Present a Deep Dive Into the Story of Their Newest Horror Game IP — and It’s So Bizarre and Insane That It’s Convinced Me To Put It on My Wishlist

Forget Back to School Deals — Lenovo’s Clearance Sale is Where You’ll Find Amazing Discounts on Laptops, Mini PCs, and More, While Supplies Last

The Gaming Desktop I’ve Relied on More Than Any Other Is More Powerful and Sleeker Than Ever — But Damn, It’s Expensive

CVE-2025-6494 – Nokogiri Heap-Based Buffer Overflow Vulnerability

Android adware: What is it, and how do I get it off my device?

Black Hat USA 2025: Is a high cyber insurance premium about your risk, or your insurer’s?

Using Manim For Making UI Animations

Google DeepMind’s latest research at ICML 2023

Is The Alters on Game Pass?

The top 10 products our readers bought for Prime Day (no. 1 surprised us)

Your Customers See More Than Reality: Is Your Mobile Strategy Keeping Up?

I like SteelSeries’ tiniest high performance gaming keyboard, but it’s not the only great magnetic option

I found an AirTag wallet that’s functional, relatively affordable, and looks fantastic

CVE-2025-4455 – Patch My PC Home Updater DLL Search Path Manipulation Vulnerability

CVE-2025-6494 – Nokogiri Heap-Based Buffer Overflow Vulnerability

Related Posts