Skip to main content

Libbiosig CVE-2025-64736

MEDIUM
Out-of-bounds Read (CWE-125)
2026-03-03 talos-cna@cisco.com
6.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
Low

Lifecycle Timeline

3
Analysis Generated
Mar 12, 2026 - 22:05 vuln.today
PoC Detected
Mar 05, 2026 - 18:16 vuln.today
Public exploit code
CVE Published
Mar 03, 2026 - 15:16 nvd
MEDIUM 6.1

DescriptionCVE.org

An out-of-bounds read vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.2 and Master Branch (5462afb0). A specially crafted .abf file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.

AnalysisAI

An out-of-bounds read vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.2 and Master Branch (5462afb0). A specially crafted .abf file can lead to an information leak. [CVSS 6.1 MEDIUM]

Technical ContextAI

Classified as CWE-125 (Out-of-bounds Read). Affects the ABF parsing component of Libbiosig. An out-of-bounds read vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.2 and Master Branch (5462afb0). A specially crafted .abf file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.

RemediationAI

Monitor vendor advisories for a patch.

CVE-2025-53518 CRITICAL POC
9.8 Aug 25

An integer overflow vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.0 and Mast

CVE-2026-22891 CRITICAL POC
9.8 Mar 03

Heap overflow in libbiosig 3.9.2 Intan CLP parsing. PoC available.

CVE-2024-23809 CRITICAL POC
9.8 Feb 20

A double-free vulnerability exists in the BrainVision ASCII Header Parsing functionality of The Biosig Project libbiosig

CVE-2024-23606 CRITICAL POC
9.8 Feb 20

An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0

CVE-2024-23313 CRITICAL POC
9.8 Feb 20

An integer underflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 an

CVE-2024-23310 CRITICAL POC
9.8 Feb 20

A use-after-free vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Ma

CVE-2024-23305 CRITICAL POC
9.8 Feb 20

An out-of-bounds write vulnerability exists in the BrainVisionMarker Parsing functionality of The Biosig Project libbios

CVE-2024-22097 CRITICAL POC
9.8 Feb 20

A double-free vulnerability exists in the BrainVision Header Parsing functionality of The Biosig Project libbiosig Maste

CVE-2024-21812 CRITICAL POC
9.8 Feb 20

An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and

CVE-2024-21795 CRITICAL POC
9.8 Feb 20

A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig Project libbiosig 2.5.

CVE-2026-20777 HIGH POC
8.1 Mar 03

Arbitrary code execution in libbiosig 3.9.2 and Master Branch can be triggered by parsing malicious Nicolet WFT files th

CVE-2025-54494 CRITICAL POC
9.8 Aug 25

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9

Share

CVE-2025-64736 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy