Login Sign Up

CVE-2025-31179

6.2 MEDIUM
Denial of Service

📋 TL;DR

A NULL pointer dereference vulnerability in gnuplot's xstrftime() function can cause segmentation faults and application crashes when processing certain time format strings. This affects systems running vulnerable versions of gnuplot, particularly those that process untrusted input through gnuplot scripts or data files.

💻 Affected Systems

Products:
  • gnuplot
Versions: Versions prior to the fix (specific version not specified in references)
Operating Systems: Linux, Unix-like systems, Windows, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerability triggers when xstrftime() processes certain time format strings; requires gnuplot to execute with vulnerable input.

📦 What is this software?

Gnuplot by Gnuplot

View all CVEs affecting Gnuplot →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Denial of service through gnuplot crash, potentially disrupting data visualization workflows or automated plotting processes.

🟠

Likely Case

Application crash when processing malformed time format strings in gnuplot scripts, requiring manual restart of affected processes.

🟢

If Mitigated

Minimal impact if gnuplot runs in isolated environments without untrusted input or with proper input validation.

🌐 Internet-Facing: LOW - gnuplot is typically not directly internet-facing; it's a desktop/command-line visualization tool.
🏢 Internal Only: MEDIUM - Internal systems using gnuplot for automated plotting could experience service disruption if processing untrusted data.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM - Requires crafting specific time format strings to trigger the NULL pointer dereference.

Exploitation requires ability to supply input to gnuplot's xstrftime() function, typically through gnuplot scripts or data files.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Red Hat advisories for specific patched versions

Vendor Advisory: https://access.redhat.com/security/cve/CVE-2025-31179

Restart Required: Yes

Instructions:

1. Check your distribution's security advisories
2. Update gnuplot package using your package manager
3. Restart any processes using gnuplot

🔧 Temporary Workarounds

Input validation

all

Validate and sanitize time format strings in gnuplot scripts before processing

Restrict gnuplot execution

all

Run gnuplot with reduced privileges or in isolated environments

🧯 If You Can't Patch

  • Isolate gnuplot processes from untrusted input sources
  • Implement monitoring for gnuplot crashes and alert on abnormal termination

🔍 How to Verify

Check if Vulnerable:

Check gnuplot version and compare against patched versions in vendor advisories

Check Version:

gnuplot --version

Verify Fix Applied:

Verify updated gnuplot version and test with known problematic time format strings

📡 Detection & Monitoring

Log Indicators:

  • Segmentation fault errors in system logs
  • Gnuplot process crashes with signal 11 (SIGSEGV)
  • Abnormal termination of gnuplot-related processes

SIEM Query:

process.name:"gnuplot" AND event.action:"crashed" OR signal:"SIGSEGV"

📊 Metadata

CVE ID: CVE-2025-31179
CVSS v3 Score: 6.2 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-476
EPSS Score: 0.04% exploit probability (9.8th percentile)
Published: March 27, 2025
Last Updated: July 30, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-31179, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)
CVE-2023-47003 9.8

A NULL pointer dereference vulnerability in RedisGraph allows attackers to execute arbitrary code or...

Same vulnerability type (CWE-476)