AI Score
Confidence
High
EPSS
Percentile
57.5%
In HDF5 1.10.1, there is an out of bounds write vulnerability in the function H5G__ent_decode_vec in H5Gcache.c in libhdf5.a. For example, h5dump would crash or possibly have unspecified other impact someone opens a crafted hdf5 file.
github.com/xiaoqx/pocs/tree/master/hdf5/readme.md