CVE-2025-7616

EUVD-2025-21362
A vulnerability, which was classified as critical, has been found in gmg137 snap7-rs up to 1.142.1. Affected by this issue is the function pthread_cond_destroy of the component Public API. The manipulation leads to memory corruption. The exploit has been disclosed to the public and may be used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
ADJACENT_NETWORK
LOW
LOW
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
VulDBCNA
5.5 MEDIUM
CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
Affected Products (NVD)
VendorProductVersion
gmg137snap7-rs
𝑥
≤ 1.142.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://gitee.com/gmg137/snap7-rs/issues/ICBIOB
https://vuldb.com/?ctiid.316316
https://vuldb.com/?id.316316
https://gitee.com/gmg137/snap7-rs/issues/ICBIOB