Out-of-Bounds Read Vulnerability in The Biosig Project's libbiosig Software
CVE-2025-64736

6.1MEDIUM

Key Information:

Vendor: The BiOSig Project
Status: LibbiOSig
Vendor: CVE Published:; 3 March 2026

🔔 Create The BiOSig Project Vulnerability Alert

What is CVE-2025-64736?

An out-of-bounds read vulnerability has been identified in the ABF parsing functionality of The Biosig Project's libbiosig version 3.9.2 and the Master Branch. This vulnerability allows attackers to exploit specially crafted .abf files, potentially leading to information leaks. By providing a malicious file, an attacker can manipulate the software, which heightens the risk of unauthorized data exposure.

Affected Version(s)

libbiosig 3.9.2

libbiosig Master Branch (5462afb0)

References

https://talosintelligence.com/vulnerability_reports/TALOS...

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 3, 2026
Vulnerability Reserved
Dec 16, 2025

Credit

Discovered by Mark Bereza of Cisco Talos.

CVE-2025-64736 Data

JSON