CVE-2025-4373

MEDIUM Year: 2025
CVSS v3 Score
4.8
Medium
Weakness Type
CWE-124
View all →

Vulnerability Description

A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

Related Vulnerabilities

CVE-2020-9086

MEDIUM
CVSS:4.3(Medium)

There is a buffer error vulnerability in some Huawei product. An unauthenticated attacker may send special UPNP message to the affected products. Due to insufficient input validation of some value, su...

CWE-1242020

CVE-2023-31130

MEDIUM
CVSS:6.4(Medium)

c-ares is an asynchronous resolver library. ares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only ...

CWE-1242023

CVE-2018-5388

MEDIUM
CVSS:6.5(Medium)

In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.

CWE-1242018

CVE-2018-15361

CRITICAL
CVSS:9.8(Critical)

UltraVNC revision 1198 has a buffer underflow vulnerability in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vul...

CWE-1242018

CVE-2021-38578

CRITICAL
CVSS:9.8(Critical)

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

CWE-1242021

CVE-2023-25610

CRITICAL
CVSS:9.8(Critical)

A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and ve...

CWE-1242023