Is there a public PoC exploit available for CVE-2025-11840?

Yes, a public proof-of-concept exploit is available for CVE-2025-11840. Prioritise patching immediately. EPSS: 0.0%.

GNU Binutils CVE-2025-11840

Q: What is the CVSS score of CVE-2025-11840?

CVE-2025-11840 has a CVSS 4.0 base score of 1.9 (Low). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

LOW

Buffer Overflow (CWE-119)

2025-10-16 cna@vuldb.com

Buffer Overflow

1.9

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

1.9 LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Apr 29, 2026 - 01:34 vuln.today

DescriptionCVE.org

A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing a manipulation can lead to out-of-bounds read. The attack can only be executed locally. The exploit has been made available to the public and could be used for attacks. This patch is called 16357. It is best practice to apply a patch to resolve this issue.

AnalysisAI

Out-of-bounds read in GNU Binutils 2.45 linker (ld) allows local authenticated attackers to read adjacent memory via manipulation of the vfinfo function in ldmisc.c, potentially disclosing sensitive information. Public exploit code is available, though the EPSS score of 0.03% indicates minimal real-world exploitation probability. The CVSS severity of 1.9 reflects limited impact (availability only) and requirement for local authenticated access.

Technical ContextAI

GNU Binutils is a collection of binary tools including the linker (ld), assembler, and other utilities. The vulnerability exists in ldmisc.c, specifically in the vfinfo function which handles formatting and output of diagnostic messages. The out-of-bounds read (CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer) occurs during memory access operations, potentially allowing disclosure of memory contents adjacent to the intended buffer. This is a classic buffer over-read condition where the function reads beyond allocated buffer boundaries without proper bounds checking.

RemediationAI

Apply the vendor-released patch referenced as patch 16357 (https://sourceware.org/bugzilla/attachment.cgi?id=16357). For GNU Binutils, this typically involves upgrading to the next stable release after 2.45 or applying the specific patch commit to the source. Verify the patched version by checking the GNU Binutils release notes or rebuilding from the patched source. If immediate patching is not feasible, restrict linker invocation (ld) to trusted inputs only and avoid exposing the linker to untrusted build artifacts or user-supplied object files. Monitor the GNU Binutils project page (https://www.gnu.org/) for the official release announcement and verify patch deployment in any CI/CD or build infrastructure that relies on Binutils.

CVE-2025-11840 vulnerability details – vuln.today

Back