CVE-2025-10824

Sažetak

A vulnerability was determined in axboe fio up to 3.41. This impacts the function __parse_jobs_ini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized.

Reference

https://github.com/axboe/fio/issues/1981
https://github.com/user-attachments/files/22266756/poc.zip
https://vuldb.com/?ctiid.325181
https://vuldb.com/?id.325181
https://vuldb.com/?submit.654072

CVSS

Base:	4.3
Impact:	6.4
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

24-09-2025 - 18:11

Objavljeno

23-09-2025 - 01:15