CVE-2025-52566

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-52566
llama.cpp is an inference of several LLM models in C/C++. Prior to version b5721, there is a signed vs. unsigned integer overflow in llama.cpp's tokenizer implementation (llama_vocab::tokenize) (src/llama-vocab.cpp:3036) resulting in unintended behavior in tokens copying size comparison. Allowing heap-overflowing llama.cpp inferencing engine with carefully manipulated text input during tokenization process. This issue has been patched in version b5721.

8.6 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 6.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://github.com/ggml-org/llama.cpp/commit/dd6e6d0b6a4bbe3ebfc931d1eb14db2f2b1d70af
https://github.com/ggml-org/llama.cpp/security/advisories/GHSA-7rxv-5jhh-j6xx
https://github.com/ggml-org/llama.cpp/security/advisories/GHSA-7rxv-5jhh-j6xx
Configurations

No configuration.

History

26 Jun 2025, 18:58

Type Values Removed Values Added
Summary
  • (es) llama.cpp es una inferencia de varios modelos LLM en C/C++. Antes de la versión b5721, se producía un desbordamiento de enteros con signo y sin signo en la implementación del tokenizador de llama.cpp (llama_vocab::tokenize) (src/llama-vocab.cpp:3036), lo que provocaba un comportamiento no deseado al comparar el tamaño de copia de tokens. Esto permitía el desbordamiento del montón del motor de inferencia de llama.cpp con una entrada de texto cuidadosamente manipulada durante el proceso de tokenización. Este problema se ha corregido en la versión b5721.

24 Jun 2025, 22:15

Type Values Removed Values Added
References () https://github.com/ggml-org/llama.cpp/security/advisories/GHSA-7rxv-5jhh-j6xx - () https://github.com/ggml-org/llama.cpp/security/advisories/GHSA-7rxv-5jhh-j6xx -

24 Jun 2025, 04:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-06-24 04:15

Updated : 2025-06-26 18:58

NVD link : CVE-2025-52566

Mitre link : CVE-2025-52566

CVE.ORG link : CVE-2025-52566

JSON object : View

Products Affected

No product.

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-195

Signed to Unsigned Conversion Error