CVE-2025-11000

EUVD-2025-31206
A vulnerability was determined in Open Babel up to 3.1.1. This affects the function PQSFormat::ReadMolecule of the file /src/formats/PQSformat.cpp. This manipulation causes null pointer dereference. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.3 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
VulDBCNA
3.3 LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:X/RC:R
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Affected Products (NVD)
VendorProductVersion
openbabelopen_babel
𝑥
≤ 3.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/openbabel/openbabel/issues/2826
https://github.com/user-attachments/files/22318474/poc.zip
https://vuldb.com/?ctiid.325928
https://vuldb.com/?id.325928
https://vuldb.com/?submit.654066