Memory Corruption Vulnerability in SAIL Image Decoding Library
CVE-2025-53510

8.8HIGH

Key Information:

Vendor: Sail Image Decoding Library
Status: Sail Image Decoding Library
Vendor: CVE Published:; 25 August 2025

🔔 Create Sail Image Decoding Library Vulnerability Alert

What is CVE-2025-53510?

A memory corruption issue exists in the PSD image decoding feature of the SAIL Image Decoding Library v0.9.8. This vulnerability arises when processing specially crafted .psd files, leading to an integer overflow during stride calculation for decoding. This flaw may result in a subsequent heap-based buffer overflow, potentially allowing remote code execution. Attackers can exploit this vulnerability by having the library read maliciously designed image files, thereby compromising system integrity and confidentiality.

Affected Version(s)

SAIL Image Decoding Library v0.9.8

References

https://talosintelligence.com/vulnerability_reports/TALOS...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2025
Vulnerability Reserved
Jul 10, 2025

Credit

Discovered by a member of Cisco Talos.