Out-of-Bounds Write Vulnerability in PointCloudLibrary by Open Source Community
CVE-2025-4640

8.3HIGH

Key Information:

Vendor: Pointcloudlibrary
Status: Pcl
Vendor: CVE Published:; 14 May 2025

🔔 Create Pointcloudlibrary Vulnerability Alert

What is CVE-2025-4640?

The PointCloudLibrary (PCL) has a vulnerability where an out-of-bounds write can occur, potentially leading to buffer overflow issues. This vulnerability arises if users install versions older than 1.14.0 or deliberately configure PCL to bypass the system zlib by setting WITH_SYSTEM_ZLIB=FALSE. It is crucial for users to verify their PCL version and configuration to mitigate risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

pcl 0

References

https://github.com/PointCloudLibrary/pcl/pull/6246

patch

https://github.com/PointCloudLibrary/pcl/blob/master/surf...

https://github.com/PointCloudLibrary/pcl/commit/502bd2b01...

CVSS V4

Score:

8.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
May 14, 2025
Vulnerability Reserved
May 13, 2025

Credit

TITAN Team (titancaproject@gmail.com)

JSON

Pointcloudlibrary