QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-62230

Back to search

CVE-2025-62230

Published: Oct 30, 2025

Modified: Apr 20, 2026

PUBLISHED

CVSS v3.1

7.3

HIGH

Description

A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected clients disconnect.

VendorProductVersions

X.Org

Xwayland

affected
0 - < 24.1.9

Red Hat

Red Hat Enterprise Linux 10

unaffected
0:24.1.5-5.el10_0 - < *

Red Hat

Red Hat Enterprise Linux 10

unaffected
0:24.1.5-5.el10_1 - < *

Red Hat

Red Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION

unaffected
0:1.1.0-25.el6_10.15 - < *

Red Hat

Red Hat Enterprise Linux 7 Extended Lifecycle Support

unaffected
0:1.20.4-33.el7_9 - < *

Red Hat

Red Hat Enterprise Linux 7 Extended Lifecycle Support

unaffected
0:1.8.0-36.el7_9.3 - < *

Red Hat

Red Hat Enterprise Linux 8

unaffected
0:21.1.3-19.el8_10 - < *

Red Hat

Red Hat Enterprise Linux 8

unaffected
0:1.20.11-27.el8_10 - < *

Red Hat

Red Hat Enterprise Linux 8

unaffected
0:1.15.0-8.el8_10 - < *

Red Hat

Red Hat Enterprise Linux 8.2 Advanced Update Support

unaffected
0:1.9.0-15.el8_2.15 - < *

Red Hat

Red Hat Enterprise Linux 8.2 Advanced Update Support

unaffected
0:1.20.6-5.el8_2 - < *

Red Hat

Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support

unaffected
0:1.11.0-8.el8_4.14 - < *

Red Hat

Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support

unaffected
0:1.20.10-3.el8_4 - < *

Red Hat

Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

unaffected
0:1.11.0-8.el8_4.14 - < *

Red Hat

Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

unaffected
0:1.20.10-3.el8_4 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support

unaffected
0:1.12.0-6.el8_6.15 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support

unaffected
0:1.20.11-6.el8_6 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support

unaffected
0:21.1.3-2.el8_6.5 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Telecommunications Update Service

unaffected
0:1.12.0-6.el8_6.15 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Telecommunications Update Service

unaffected
0:1.20.11-6.el8_6 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Telecommunications Update Service

unaffected
0:21.1.3-2.el8_6.5 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions

unaffected
0:1.12.0-6.el8_6.15 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions

unaffected
0:1.20.11-6.el8_6 - < *

Red Hat

Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions

unaffected
0:21.1.3-2.el8_6.5 - < *

Red Hat

Red Hat Enterprise Linux 8.8 Telecommunications Update Service

unaffected
0:1.12.0-15.el8_8.16 - < *

Red Hat

Red Hat Enterprise Linux 8.8 Telecommunications Update Service

unaffected
0:1.20.11-17.el8_8 - < *

Red Hat

Red Hat Enterprise Linux 8.8 Telecommunications Update Service

unaffected
0:21.1.3-12.el8_8 - < *

Red Hat

Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions

unaffected
0:1.12.0-15.el8_8.16 - < *

Red Hat

Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions

unaffected
0:1.20.11-17.el8_8 - < *

Red Hat

Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions

unaffected
0:21.1.3-12.el8_8 - < *

Red Hat

Red Hat Enterprise Linux 9

unaffected
0:1.20.11-32.el9_6 - < *

Red Hat

Red Hat Enterprise Linux 9

unaffected
0:1.14.1-9.el9_6 - < *

Red Hat

Red Hat Enterprise Linux 9

unaffected
0:23.2.7-5.el9_6 - < *

Red Hat

Red Hat Enterprise Linux 9

unaffected
0:1.15.0-6.el9_7 - < *

Red Hat

Red Hat Enterprise Linux 9

unaffected
0:23.2.7-5.el9_7 - < *

Red Hat

Red Hat Enterprise Linux 9

unaffected
0:1.20.11-32.el9_7 - < *

Red Hat

Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

unaffected
0:1.11.0-22.el9_0.16 - < *

Red Hat

Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

unaffected
0:1.20.11-12.el9_0 - < *

Red Hat

Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

unaffected
0:21.1.3-4.el9_0 - < *

Red Hat

Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

unaffected
0:1.12.0-14.el9_2.13 - < *

Red Hat

Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

unaffected
0:1.20.11-19.el9_2 - < *

Red Hat

Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

unaffected
0:21.1.3-9.el9_2 - < *

Red Hat

Red Hat Enterprise Linux 9.4 Extended Update Support

unaffected
0:1.13.1-8.el9_4.8 - < *

Red Hat

Red Hat Enterprise Linux 9.4 Extended Update Support

unaffected
0:1.20.11-27.el9_4 - < *

Red Hat

Red Hat Enterprise Linux 9.4 Extended Update Support

unaffected
0:22.1.9-7.el9_4 - < *

Red Hat

Red Hat Enterprise Linux 6

All versions

Weaknesses (CWE)

CWE-416

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

High

References

RHSA-2025:19432
vendor-advisory
x_refsource_REDHAT
RHSA-2025:19433
vendor-advisory
x_refsource_REDHAT
RHSA-2025:19434
vendor-advisory
x_refsource_REDHAT
RHSA-2025:19435
vendor-advisory
x_refsource_REDHAT
RHSA-2025:19489
vendor-advisory
x_refsource_REDHAT
RHSA-2025:19623
vendor-advisory
x_refsource_REDHAT
RHSA-2025:19909
vendor-advisory
x_refsource_REDHAT
RHSA-2025:20958
vendor-advisory
x_refsource_REDHAT
RHSA-2025:20960
vendor-advisory
x_refsource_REDHAT
RHSA-2025:20961
vendor-advisory
x_refsource_REDHAT
RHSA-2025:21035
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22040
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22041
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22051
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22055
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22056
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22077
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22096
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22164
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22167
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22364
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22365
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22426
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22427
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22667
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22729
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22742
vendor-advisory
x_refsource_REDHAT
RHSA-2025:22753
vendor-advisory
x_refsource_REDHAT
RHSA-2026:0031
vendor-advisory
x_refsource_REDHAT
RHSA-2026:0033
vendor-advisory
x_refsource_REDHAT
RHSA-2026:0034
vendor-advisory
x_refsource_REDHAT
RHSA-2026:0035
vendor-advisory
x_refsource_REDHAT
RHSA-2026:0036
vendor-advisory
x_refsource_REDHAT
RHBZ#2402653
issue-tracking
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2025-62230 | HIGH (7.3) - Security Vulnerability | QwikSec