CVE-2025-11839

Summary

A security flaw has been discovered in GNU Binutils 2.45. Impacted is the function tg_tag_type of the file prdbg.c. Performing a manipulation results in unchecked return value. The attack needs to be approached locally. The exploit has been released to the public and may be used for attacks.

Affected Software

VendorProductVersion RangeStatus
GNUBinutils2.45affected

Weaknesses

  • CWE-252: Unchecked Return Value
  • CWE-253: Incorrect Check of Function Return Value

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

Additional References

Additional References

References