Null Pointer Dereference in Khronos Group glslang Product
CVE-2025-3010

4.8MEDIUM

Key Information:

Vendor
Khronos Group
Status
Glslang
Vendor
CVE Published:
31 March 2025

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A null pointer dereference vulnerability exists in the Khronos Group glslang 15.1.0 implementation. This flaw, located in the glslang::TIntermediate::isConversionAllowed function within the Intermediate.cpp file, can be exploited through local access. If an attacker successfully manipulates the affected function, it may lead to unexpected behavior and potential crashes of the application. Public disclosure of the vulnerability has raised awareness about the risk, urging users to apply necessary mitigations to safeguard their systems.

Affected Version(s)

glslang 15.1.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-3010 - Proof of Concept

References

https://vuldb.com/?id.302060
vdb-entrytechnical-description
https://vuldb.com/?ctiid.302060
signaturepermissions-required
https://vuldb.com/?submit.524561
third-party-advisory

CVSS V4

Score:
4.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.