CVE-2025-62231

7.3 HIGH

Published: October 30, 2025 Modified: December 04, 2025

Description

A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the XkbSetCompatMap() function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a crash.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://access.redhat.com/errata/RHSA-2025:19432

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:19433

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:19434

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:19435

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:19489

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:19623

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:19909

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:20958

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:20960

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:20961

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:21035

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22040

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22041

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22051

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22055

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22056

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22077

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22096

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22164

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22167

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22364

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22365

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22426

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22427

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22667

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22729

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22742

Source: secalert@redhat.com

https://access.redhat.com/errata/RHSA-2025:22753

Source: secalert@redhat.com

https://access.redhat.com/security/cve/CVE-2025-62231

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2402660

Source: secalert@redhat.com

http://www.openwall.com/lists/oss-security/2025/10/28/7

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2025/10/msg00033.html

Source: af854a3a-2127-422b-91ae-364da2661108

32 reference(s) from NVD

Quick Stats

CVSS v3 Score

7.3 / 10.0

EPSS (Exploit Probability)

0.0%

3th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-190

Related CVEs

CVE-2025-69261 N/A

CVE-2025-69257 6.7

CVE-2025-69210 N/A

CVE-2025-66823 N/A

CVE-2025-50343 N/A