CVE-2025-47392 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: April 6, 2026
Unknown - Memory Corruption
Published: April 6, 2026Updated: April 6, 2026
Overview
Unknown vendor's product contains a memory corruption vulnerability caused by decoding corrupted satellite data files with invalid signature offsets, letting attackers cause memory corruption, exploit requires crafted corrupted files.
Severity & Score
Severity: High
CVSS Score: 8.8
Impact
Attackers can cause memory corruption, potentially leading to application crashes or arbitrary code execution.
Mitigation
Update to the latest version with a fix for memory corruption in satellite data decoding.
References
Related Resources
Details
- CVE ID
- CVE-2025-47392
- Severity
- High
- CVSS Score
- 8.8
- Type
- undefined
- Status
- new
CWE
- CWE-190
CVSS Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H