Vulnerability Database

309,364

Total vulnerabilities in the database

CVE-2025-49175

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash.

  • Published: Jun 17, 2025
  • Updated: Nov 4, 2025
  • CVE: CVE-2025-49175
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

CWEs:

No affected software listed.