CVE-2025-7209

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: 9fans plan9port versions prior to 9da5b44

Description: A vulnerability exists in the value decode function within the src/libsec/port/x509.c library. The manipulation of this function leads to a null pointer dereference. Local access is required for exploitation. The exploit has been publicly disclosed and may be used.

Recommendations: Apply the patch with identifier deae8939583d83fd798fca97665e0e94656c3ee8 to resolve this issue.

Exploit

Fix

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-476

Related Identifiers

CVE-2025-7209

Affected Products

Plan9Port

CVE-2025-7209

Weakness Enumeration

Related Identifiers

Affected Products

References · 13