CVE-2025-10997 MEDIUM

CVE-2025-10997: Open Babel chemkinformat.cpp CheckSpecies heap-based overflow

Vendor N/A
Product Open Babel
Weakness CWE-122
Published September 26, 2025
Last update September 26, 2025

CVSS base score

4.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A flaw has been found in Open Babel up to 3.1.1. Impacted is the function ChemKinFormat::CheckSpecies of the file /src/formats/chemkinformat.cpp. Executing manipulation can lead to heap-based buffer overflow. The attack can only be executed locally. The exploit has been published and may be used.

Key dates

02Disclosure timeline

September 26, 2025 CVE published
September 26, 2025 Record updated