cvedb.io
CVE-2025-5918
LOW · CVSS 3.9
EPSS exploitation probability: 0%
Published 2025-06-09T20:15:27.493 · Last modified 2026-06-30T11:16:25.930

Summary

A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar, potentially allowing for reading past the end of the file. This out-of-bounds read can lead to unintended consequences, including unpredictable program behavior, memory corruption, or a denial-of-service condition.

Affected products

libarchive — libarchive

Does this affect you?

Add your gear to cvedb and we'll alert you only when libarchive ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.