{"uuid": "95c66b6f-2648-498e-a774-ce7d312238c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3416", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17274", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3416\n\ud83d\udd25 CVSS Score: 3.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string.\n\ud83d\udccf Published: 2025-04-08T18:24:22.102Z\n\ud83d\udccf Modified: 2025-05-22T13:26:41.042Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2025-3416\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2357560\n3. https://github.com/sfackler/rust-openssl\n4. https://github.com/sfackler/rust-openssl/commit/87085bd67896b7f92e6de35d081f607a334beae4\n5. https://github.com/sfackler/rust-openssl/pull/2390\n6. https://rustsec.org/advisories/RUSTSEC-2025-0022.html", "creation_timestamp": "2025-05-22T13:45:42.000000Z"}