CVE-2025-61842

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Format Plugins versions 1.1.1 and earlier

Description A Use After Free issue exists in Format Plugins versions 1.1.1 and earlier, potentially leading to memory exposure. An attacker could exploit this to disclose sensitive information. Successful exploitation requires user interaction, specifically a victim opening a malicious file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-14207

CVE-2025-61842

ZDI-25-997

Affected Products

Format Plugins

CVE-2025-61842

Weakness Enumeration

Related Identifiers

Affected Products

References · 8