CVE-2025-27598 — HIGH (7.5)

Q: How severe is CVE-2025-27598?

CVE-2025-27598 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-27598?

Check the references section above for vendor advisories and patch information. Affected products include: Sixlabors Imagesharp.

Vulnerability Description

ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentially lead to denial of service. The problem has been patched. All users are advised to upgrade to v3.1.7 or v2.1.10.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Sixlabors	Imagesharp	< 2.1.10

Related Weaknesses (CWE)

CWE-787

References

https://github.com/SixLabors/ImageSharp/issues/2859ExploitIssue Tracking
https://github.com/SixLabors/ImageSharp/pull/2890Issue TrackingPatch
https://github.com/SixLabors/ImageSharp/security/advisories/GHSA-2cmq-823j-5qj8Vendor Advisory
https://github.com/SixLabors/ImageSharp/issues/2859ExploitIssue Tracking

FAQ

What is CVE-2025-27598?

CVE-2025-27598 is a vulnerability with a CVSS score of 7.5 (HIGH). ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentia...

How severe is CVE-2025-27598?

CVE-2025-27598 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-27598?

Check the references section above for vendor advisories and patch information. Affected products include: Sixlabors Imagesharp.