Out-of-Bounds Read Vulnerability in Samsung rLottie Application
CVE-2025-53074

5.1MEDIUM

Key Information:

Vendor: Samsung Open Source
Status: Rlottie
Vendor: CVE Published:; 30 June 2025

🔔 Create Samsung Open Source Vulnerability Alert

What is CVE-2025-53074?

The rLottie application by Samsung contains an Out-of-Bounds Read vulnerability, which may allow attackers to exploit overflow buffers. This flaw impacts rLottie version 0.2 and requires attention to secure affected deployments. Buffer overflows can lead to unexpected behavior and potential data leakage, emphasizing the importance of applying updates and patches to maintain application integrity.

Affected Version(s)

rLottie V0.2

References

https://github.com/Samsung/rlottie/pull/571

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2025
Vulnerability Reserved
Jun 24, 2025

Credit

Meta Product Security