See Recorded Future’s Threat Intelligence Solutions in Action

See our Threat Intelligence Solutions in Action

Reduce risk and mitigate cyber attacks, no matter your IT & security stack, maturity journey, or industry

Book a free demo

View Solutions to Reduce Risk

See Recorded Future’s Intelligence in Action

Reduce operational risk through timely, precise, and actionable intelligence.

Book a free demo

Intelligence Cloud Overview

View Services & Support Overview

View Research Overview

CVE-2025-1153

CVSS 3.1 Score 3.1 of 10 (low)

Details

Published Feb 10, 2025

CWE ID 119

Summary

CVE-2025-1153 is a memory corruption vulnerability affecting the bfd_set_format function in GNU Binutils 2.43 and 2.44. This issue can lead to memory manipulation and result in remote code execution, although the complexity and difficulty of exploitation are relatively high. The vulnerability is located in the file format.c component. To mitigate this risk, it's strongly advised to upgrade to version 2.45, which includes the patch with identifier 8d97c1a53f3dc9fd8e1ccdb039b8a33d50133150.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

Back to Vulnerability Database