CVE-2025-4802 – GNU C Library LD_LIBRARY_PATH Path Traversal Vulnerability

May 16, 2025

CVE ID : CVE-2025-4802

Published : May 16, 2025, 8:15 p.m. | 48 minutes ago

Description : Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo).

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4807 – SourceCodester Online Student Clearance System Directory Traversal Information Disclosure

Next Article CVE-2025-22233 – Spring Framework Disallowed Fields Bypass Vulnerability

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

HoundDog.ai Launches Industry’s First Privacy-by-Design Code Scanner for AI Applications

The Double-Edged Sustainability Sword Of AI In Web Design

How VPNs are helping people evade increased censorship – and much more

Google’s AI Mode can now find restaurant reservations for you – how it works

Best early Labor Day TV deals 2025: Save up to 50% on Samsung, LG, and more

Claude wins high praise from a Supreme Court justice – is AI’s legal losing streak over?

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Quickly Generate Forms based on your Eloquent Models with Laravel Formello

Pest 4 is Released

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

You’ll need standalone Word, PowerPoint, Excel on iOS, as Microsoft 365 app becomes a Copilot wrapper

Microsoft to Move Copilot Previews to iOS While Editing Returns to Office Apps

CVE-2025-4802 – GNU C Library LD_LIBRARY_PATH Path Traversal Vulnerability

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

Onboarding your AI peer programmer: Setting up GitHub Copilot coding agent for success

The best online video editors of 2025: Expert tested

Best Laptop For Web Development and Designing in 2025

The year of the ninja continues with SHINOBI: Art of Vengeance’s latest combat trailer, coming to Xbox and PC

This premium Lenovo laptop is nearly checks all the boxes for me – including battery life

Critical Vulnerabilities in Quick Agent Software Expose Ricoh MFPs to Remote Attacks

Meta Disrupts Influence Ops Targeting Romania, Azerbaijan, and Taiwan with Fake Personas

NVIDIA Bundles Borderlands 4 With GeForce RTX 50-Series GPUs

CVE-2025-4802 – GNU C Library LD_LIBRARY_PATH Path Traversal Vulnerability

Related Posts