CVE-2025-2588
Description
A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This vulnerability affects the function re_case_expand of the file src/fa.c. The manipulation of the argument re leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
Risk Information
Base Score
3.3
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
EPSS Score
Exploitation Probability
0.177
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) libfa1-debuginfo-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) libaugeas0-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) libaugeas0-debuginfo-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) libfa1-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) augeas-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) augeas-lenses-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) augeas-devel-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) augeas-debugsource-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:1534-1(Basesystem Module 15 SP6) augeas-debuginfo-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) augeas-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) augeas-debuginfo-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) augeas-debugsource-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) augeas-devel-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) augeas-lenses-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) libaugeas0-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) libaugeas0-debuginfo-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) libfa1-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
| SUSE-SU-2025:01534-1(Basesystem Module 15 SP7) libfa1-debuginfo-1.14.1-150600.3.3.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234