CVE-2025-4001
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-4001
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-4001.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-4001
- Published
- 2025-04-28T05:15:17Z
- Modified
- 2025-04-29T14:50:55.186454Z
- Severity
-
- 3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability has been found in scipopt scip up to 9.2.1 and classified as problematic. Affected by this vulnerability is the function main of the file examples/LOP/src/genRandomLOPInstance.c of the component File Descriptor Handler. The manipulation of the argument File leads to uncontrolled file descriptor consumption. Local access is required to approach this attack. Upgrading to version 9.2.2 is able to address this issue. The identifier of the patch is d6da63b941216d75fbc1aefea9abf1de6712a2d0. It is recommended to upgrade the affected component.
- References
-
- https://github.com/scipopt/scip/commit/d6da63b941216d75fbc1aefea9abf1de6712a2d0
- https://github.com/scipopt/scip/issues/130
- https://github.com/scipopt/scip/issues/130#issuecomment-2697893742
- https://github.com/scipopt/scip/releases/tag/v922
- https://vuldb.com/?ctiid.306337
- https://vuldb.com/?id.306337
- https://vuldb.com/?submit.558121
Affected packages
Git / github.com/scipopt/scip
Affected ranges
- Type
- GIT
- Repo
- https://github.com/scipopt/scip
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
EXACTIP-merged-v1108
EXACTIP-merged-v1208
EXACTIP-v010
EXACTIP-v020
EXACTIP-v030
cvstogit
good_solvertp
ringpacking-revised-paper
v050
v060
v065
v066
v068
v069
v070
v075
v076
v077
v078
v079
v079e
v079f
v080
v080a
v081
v081c
v081d
v081e
v081f
v082
v082a
v082b
v082c
v082d
v090
v090a
v090b
v090c
v090d
v090e
v090f
v090h
v090i
v090k
v100
v1003
v1004
v1005
v1006
v1007
v1008
v1009
v110
v1101
v11010
v1102
v1103
v1104
v1105
v1106
v1107
v1108
v1109
v120
v1201
v1202
v1204
v1205
v1206
v1207
v1208
v1209
v121
v1211
v1212
v1213
v1214
v1215
v1216
v200
v2001
v2002
v2003
v200a
v2011
v2012
v2013
v2014
v2015
v2016
v210
v2101
v2111
v2112
v2113
v2114
v2115
v300
v3001
v300alpha
v301
v3012
v3013
v3014
v3015
v302
v310
v3101
v311
v320
v3201
v321
v400
v401
v500
v501
v600
v601
v602
v700
v701
v702
v703
v800
v801
v802
v803
v804
v810
v900
v901
v910
v911
v920
v921