JLSEC-2026-125

• 4.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L CVSS Calculator

{
    "sources": [
        {
            "database_specific": {
                "status": "Modified"
            },
            "modified": "2025-11-03T20:19:05.993Z",
            "id": "CVE-2025-48174",
            "published": "2025-05-16T05:15:37.213Z",
            "imported": "2026-04-17T08:45:49.614Z",
            "html_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48174",
            "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-48174"
        },
        {
            "modified": "2025-11-03T21:34:58Z",
            "url": "https://api.github.com/advisories/GHSA-f6x7-5x3c-j3rg",
            "id": "GHSA-f6x7-5x3c-j3rg",
            "published": "2025-05-16T06:30:24Z",
            "imported": "2026-04-17T08:45:50.076Z",
            "html_url": "https://github.com/advisories/GHSA-f6x7-5x3c-j3rg"
        },
        {
            "modified": "2025-11-03T20:04:42Z",
            "url": "https://euvdservices.enisa.europa.eu/api/enisaid?id=EUVD-2025-15404",
            "id": "EUVD-2025-15404",
            "published": "2025-05-16T00:00:00Z",
            "imported": "2026-04-17T08:45:49.736Z",
            "html_url": "https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-15404"
        }
    ],
    "license": "CC-BY-4.0"
}

• https://github.com/AOMediaCodec/libavif/commit/50a743062938a3828581d725facc9c2b92a1d109
• https://github.com/AOMediaCodec/libavif/commit/c9f1bea437f21cb78f9919c332922a3b0ba65e11
• https://github.com/AOMediaCodec/libavif/commit/e5fdefe7d1776e6c4cf1703c163a8c0535599029
• https://github.com/AOMediaCodec/libavif/pull/2768
• https://lists.debian.org/debian-lts-announce/2025/05/msg00031.html
• https://nvd.nist.gov/vuln/detail/CVE-2025-48174
• https://github.com/advisories/GHSA-f6x7-5x3c-j3rg