What is the CVSS score of CVE-2025-25977?

CVE-2025-25977 has a contested CVSS base score of 9.8 from a third party (e.g. CISA-ADP), while the vendor rates it Critical. vuln.today uses the vendor rating as authoritative.

Which versions of Red Hat are affected by CVE-2025-25977?

CVE-2025-25977 presents critical security risk, a prototype pollution vulnerability rated CVSS 9.8.. A patch is available.

Is there a public PoC exploit available for CVE-2025-25977?

Yes, a public proof-of-concept exploit is available for CVE-2025-25977. Prioritise patching immediately. EPSS: 0.4%.

How to fix or mitigate CVE-2025-25977?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. Monitor vendor channels for patch availability.

Red Hat CVE-2025-25977

CRITICAL

Improperly Controlled Modification of Object Prototype Attributes (Prototype Pollution) (CWE-1321)

2025-03-10 cve@mitre.org

GHSA-v2mw-5mch-w8c5

RCE Code Injection Red Hat

Critical

Disputed · 9.8 NVD

Severity by source

Sources disagree (Medium–Critical)

NVD PRIMARY

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Red Hat

6.5 MEDIUM

qualitative

vuln.today treats the vendor’s rating as authoritative. A higher third-party CVSS (e.g. CISA-ADP) is shown for transparency but does not drive the headline severity.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 19:50 vuln.today

PoC Detected

Mar 25, 2025 - 16:53 vuln.today

Public exploit code

CVE Published

Mar 10, 2025 - 16:15 nvd

CRITICAL 9.8

DescriptionCVE.org

An issue in canvg v.4.0.2 allows an attacker to execute arbitrary code via the Constructor of the class StyleElement.

AnalysisAI

canvg 4.0.2 is vulnerable to arbitrary code execution through prototype pollution in the StyleElement class constructor. An attacker can exploit this to execute code in environments that process SVG content with canvg. A PoC exists with no patch available.

Technical ContextAI

The constructor of the StyleElement class in canvg does not sanitize properties, enabling prototype pollution (CWE-1321). In Node.js environments, prototype pollution can be chained to achieve remote code execution through polluted properties that influence child_process or similar built-in modules.

Affected ProductsAI

canvg 4.0.2

RemediationAI

Pin canvg to a patched version when available. Validate and sanitize SVG input before processing. Run SVG rendering in an isolated sandbox.

Vendor StatusVendor

CVE-2025-25977 vulnerability details – vuln.today

Back

Red Hat CVE-2025-25977

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

Affected ProductsAI

RemediationAI

Vendor StatusVendor

Share

External POC / Exploit Code