CVE-2025-6536: Reachable Assertion in Tarantool
A vulnerability has been found in Tarantool up to 3.3.1 and classified as problematic. Affected by this vulnerability is the function tm_to_datetime in the library src/lib/core/datetime.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
CVE-2025-6536: Reachable Assertion in Tarantool
Description
A vulnerability has been found in Tarantool up to 3.3.1 and classified as problematic. Affected by this vulnerability is the function tm_to_datetime in the library src/lib/core/datetime.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-06-23T14:43:00.731Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 685a0560dec26fc862d8cf7c
Added to database: 6/24/2025, 1:54:40 AM
Last updated: 6/24/2025, 1:54:40 AM
Views: 1
Related Threats
CVE-2025-6551: Cross Site Scripting in java-aodeng Hope-Boot
MediumCVE-2025-34041: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Sangfor Technologies Co., Ltd. Endpoint Detection and Response Platform
CriticalCVE-2025-34040: CWE-434 Unrestricted Upload of File with Dangerous Type in Beijing Zhiyuan Internet Software Co., Ltd. OA
CriticalCVE-2025-34039: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Yonyou Co., Ltd. UFIDA NC
CriticalCVE-2025-34038: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Shanghai Fanwei Network Technology e-cology
HighActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.