← back
CVE-2025-69644

CVE-2025-69644

CVSS 5 MEDIUMEPSS 0.1%CWE-400
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Mar 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An issue was discovered in Binutils before 2.46. The objdump contains a denial-of-service vulnerability when processing a crafted binary with malformed debug information. A logic flaw in the handling of DWARF location list headers can cause objdump to enter an unbounded loop and produce endless output until manually interrupted. This issue affects versions prior to the upstream fix and allows a local attacker to cause excessive resource consumption by supplying a malicious input file.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
Affected products
n/a · n/a