CVE-2025-6858 – HDF5 Null Pointer Dereference Vulnerability

June 29, 2025

CVE ID : CVE-2025-6858

Published : June 29, 2025, 11:15 a.m. | 4 hours, 2 minutes ago

Description : A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5C__flush_single_entry of the file src/H5Centry.c. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-24915 – Check Point SmartConsole Unsecured Credentials

Next Article CVE-2025-6865 – DaiCuo Cross-Site Request Forgery (CSRF) Vulnerability

Highlights

CVE-2025-47947 – ModSecurity Denial of Service Vulnerability

May 21, 2025

CVE ID : CVE-2025-47947

Published : May 21, 2025, 10:15 p.m. | 35 minutes ago

Description : ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Versions up to and including 2.9.8 are vulnerable to denial of service in one special case (in stable released versions): when the payload’s content type is `application/json`, and there is at least one rule which does a `sanitiseMatchedBytes` action. A patch is available at pull request 3389 and expected to be part of version 2.9.9. No known workarounds are available.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Your Slack app is getting a big upgrade – here’s how to try the new AI features

5 Kindle accessories every user should have (and why they make such a big difference)

These premium outdoor speakers made me reconsider switching to Bluetooth audio – here’s why

Google just gave its Photos app the feature upgrade it deserves – here’s what’s new

How Code Feedback MCP Enhances AI-Generated Code Quality

How Code Feedback MCP Enhances AI-Generated Code Quality

PRSS Site Creator – Create Blogs and Websites from Your Desktop

Say hello to ECMAScript 2025

HopToDesk – remote desktop tool

HopToDesk – remote desktop tool

Le notizie minori del mondo GNU/Linux e dintorni della settimana nr 26/2025

Wayland vs X11: progresso necessario o strategia di marketing?

CVE-2025-6858 – HDF5 Null Pointer Dereference Vulnerability

CVE-2025-6862 – SourceCodester Best Salon Management System SQL Injection Vulnerability

CVE-2025-6863 – PHPGurukul Local Services Search Engine Management System SQL Injection Vulnerability

CVE-2025-32376 – Discourse DM Privilege Escalation Vulnerability

CVE-2025-2506 – EDB pglogical Replication Connection Verification Bypass

Available now, this might be the darkest and most gorgeous metroidvania hitting Xbox and PC this year

Your data’s probably not ready for AI – here’s how to make it trustworthy

CVE-2025-47947 – ModSecurity Denial of Service Vulnerability

Vanillin Market Benefits from Clean Label and Natural Ingredient Trends

Self-Serve Advertising Platform Architecture: A Developer’s Roadmap

CVE-2025-48935 – Deno SQLite Database Permission Bypass Vulnerability

CVE-2025-6858 – HDF5 Null Pointer Dereference Vulnerability

Related Posts