Remote Code Execution Vulnerability in Ashlar-Vellum Cobalt File Parsing
CVE-2025-2012

7.8HIGH

Key Information:

Vendor: Ashlar-vellum
Status: Cobalt
Vendor: CVE Published:; 11 March 2025

🔔 Create Ashlar-vellum Vulnerability Alert

What is CVE-2025-2012?

The vulnerability in Ashlar-Vellum Cobalt is rooted in the improper handling of user-supplied data during the parsing of VS files. This flaw can lead to a read past the end of an allocated buffer, enabling attackers to execute arbitrary code within the context of the current process. User interaction is required, as the target must either open a malicious file or visit an infected webpage to trigger the exploit, posing a significant risk to system integrity if left unpatched.

Affected Version(s)

Cobalt 1204.91

References

https://www.zerodayinitiative.com/advisories/ZDI-25-119/

x_research-advisory

CVSS V3.0

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 11, 2025
Vulnerability Reserved
Mar 5, 2025