Vulnerability Description
A weakness has been identified in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. It is possible to launch the attack on the local host. The exploit has been made available to the public and could be exploited.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openbabel | Open Babel | <= 3.1.1 |
Related Weaknesses (CWE)
References
- https://github.com/openbabel/openbabel/issues/2834ExploitIssue Tracking
- https://github.com/user-attachments/files/22318611/poc.zipExploit
- https://vuldb.com/?ctiid.325922Permissions RequiredVDB Entry
- https://vuldb.com/?id.325922Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.654057Third Party AdvisoryVDB Entry
FAQ
What is CVE-2025-10994?
CVE-2025-10994 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A weakness has been identified in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. It is possib...
How severe is CVE-2025-10994?
CVE-2025-10994 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-10994?
Check the references section above for vendor advisories and patch information. Affected products include: Openbabel Open Babel.