Is there a public PoC exploit available for CVE-2025-11494?

Yes, a public proof-of-concept exploit is available for CVE-2025-11494. Prioritise patching immediately. EPSS: 0.0%.

Is there a patch available for CVE-2025-11494?

Yes, a patch is available for CVE-2025-11494. Update the affected software to the latest version immediately.

GNU Binutils CVE-2025-11494

Q: What is the CVSS score of CVE-2025-11494?

CVE-2025-11494 has a CVSS 4.0 base score of 1.9 (Low). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

LOW

Buffer Overflow (CWE-119)

2025-10-08 cna@vuldb.com

Buffer Overflow

1.9

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

1.9 LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Apr 29, 2026 - 02:04 vuln.today

DescriptionCVE.org

A vulnerability was found in GNU Binutils 2.45. Impacted is the function _bfd_x86_elf_late_size_sections of the file bfd/elfxx-x86.c of the component Linker. The manipulation results in out-of-bounds read. The attack needs to be approached locally. The exploit has been made public and could be used. The patch is identified as b6ac5a8a5b82f0ae6a4642c8d7149b325f4cc60a. A patch should be applied to remediate this issue.

AnalysisAI

Out-of-bounds read in GNU Binutils 2.45 linker component allows local authenticated attackers to trigger memory access violations via crafted input to the _bfd_x86_elf_late_size_sections function in bfd/elfxx-x86.c. The vulnerability has publicly available exploit code and requires local access with limited privileges; real-world impact is minimal availability loss (CVSS 1.9, EPSS 0.03%) rather than confidentiality or integrity compromise.

Technical ContextAI

GNU Binutils is a collection of binary tools including the linker (ld), assembler (as), and object file utilities. The vulnerability exists in the ELF x86 linker backend, specifically in the _bfd_x86_elf_late_size_sections function in bfd/elfxx-x86.c, which handles section sizing during the late stages of ELF linking. CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) indicates the function fails to validate memory access boundaries when processing x86 ELF sections, likely during size calculation or relocation processing. This is a buffer overflow variant affecting the linker's internal data structures rather than heap or stack.

RemediationAI

Apply the vendor-released patch identified as commit b6ac5a8a5b82f0ae6a4642c8d7149b325f4cc60a from the binutils-gdb Git repository (https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=b6ac5a8a5b82f0ae6a4642c8d7149b325f4cc60a). Users should upgrade Binutils to the next stable release following 2.45 or apply the patch directly to their 2.45 installation. For systems using Binutils 2.45 only in automated build pipelines, restricting linker execution to unprivileged service accounts is not recommended as a workaround due to legitimate linker privilege requirements; instead, prioritize timely patching. Distributions and package maintainers should integrate this patch into their Binutils 2.45 point releases or advise users to upgrade to newer stable versions (2.46 or later, if available).

CVE-2025-11494 vulnerability details – vuln.today

Back