Analyst readout for executives and security teams
Plain-English summary
This issue affects librsvg2-bin 2.40.13, specifically the rsvg conversion tooling, when it processes a malformed SVG file. A local attacker can trigger a crash, causing denial of service. The public record does not show active exploitation, but an Exploit-DB reference indicates public exploit information exists.
Executive priority
Treat as a moderate operational risk. Prioritize environments where SVG conversion handles untrusted files or supports business-critical processing pipelines.
Technical view
CVE-2018-25305 is a CWE-120 buffer overflow in librsvg2-bin 2.40.13. Crafted SVG input to the rsvg conversion tool can cause a segmentation fault in the cairo image compositor. CVSS 4.0 is 6.9 with local attack vector, low complexity, no privileges, no user interaction, and high availability impact.
Likely exposure
Exposure is most relevant on systems running librsvg2-bin 2.40.13 that process local or user-supplied SVG files through rsvg conversion workflows.
Exploitation context
Sources describe local denial of service through malformed SVG processing. KEV is false, and the provided sources do not claim active exploitation in the wild.
Researcher notes
The record is narrow: affected version 2.40.13 and local DoS are stated. No remote code execution, active exploitation, or vendor patch details are provided in the bundle.
Mitigation direction
- Inventory systems for librsvg2-bin or RSVG version 2.40.13.
- Check distribution or vendor guidance for fixed packages or supported upgrade paths.
- Avoid processing untrusted SVG files with affected rsvg tooling.
- Run SVG conversion jobs with isolation and least privilege where feasible.
Validation and detection
- Confirm installed librsvg2-bin or RSVG package versions on relevant hosts.
- Identify workflows that pass user-supplied SVG files to rsvg conversion tools.
- Review crash logs for segmentation faults linked to SVG conversion.
- Verify remediation against vendor or distribution package advisories.
Public sources used
Based on public source material and reviewed before publication.
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
CWE-120: Exact CWE lookup
Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
Open ATT&CK lookupCVE-2018-25305 mapping review
Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.
Open ATT&CK lookup- Severity
- Medium
- CVSS
- 6.9 (4.0)
- Known Exploited
- No
- Published
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
CNA and ADP enrichment extracted from CVE v5
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
CVSS vector scores
1 official scoreWe collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N——Primary CVE scoreVulnerability scoring details
Base CVSS 4.0 score
6.9MediumVector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Source materials
- CVE List V5 sourceCVE List V5
- ExploitDB-44491CVE reference · exploit
- VulnCheck Advisory: librsvg2-bin 2.40.13 Buffer Overflow via Malformed SVGCVE reference · third-party-advisory
Products and packages named in the record
CWE details
CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.
