CVE-2025-1180

CVSS 3.1 Score 3.1 of 10 (low)

Details

Published Feb 11, 2025

CWE ID 119

Summary

CVE-2025-1180 is a newly disclosed vulnerability affecting the GNU Binutils 2.43 version, specifically the function _bfd_elf_write_section_eh_frame in bfd/elf-eh-frame.c within the component ld. This issue allows for memory corruption, potentially leading to remote attacks. The complexity of an attack is reported to be high, and the exploitability is considered difficult. However, an exploit for this vulnerability has already been made public, making it a critical concern. It is strongly advised to apply the available patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Gnu Binutils

Affected Vendors

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3OCcbk
https://www.cve.org/CVERecord?id=CVE-2025-1180
https://nvd.nist.gov/vuln/detail/CVE-2025-1180

Back to Vulnerability Database