CVE-2025-64736 – An out-of-bounds read vulnerability in libbiosi... (How to Fix)

Q: What is the severity of CVE-2025-64736?

CVE-2025-64736 has a CVSS score of 6.1 (MEDIUM). An out-of-bounds read vulnerability in libbiosig's ABF file parser allows attackers to leak sensitive information by providing malicious .abf files. This affects systems using libbiosig 3.9.2 and the master branch commit 5462afb0 for processing ABF (Axon Binary Format) files, commonly used in electrophysiology research.

📋 TL;DR

An out-of-bounds read vulnerability in libbiosig's ABF file parser allows attackers to leak sensitive information by providing malicious .abf files. This affects systems using libbiosig 3.9.2 and the master branch commit 5462afb0 for processing ABF (Axon Binary Format) files, commonly used in electrophysiology research.

💻 Affected Systems

Products:

The Biosig Project libbiosig

Versions: Version 3.9.2 and master branch commit 5462afb0

Operating Systems: Linux, Windows, macOS, Unix-like systems

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability triggers when parsing specially crafted ABF files; systems not processing ABF files are not affected.

📦 What is this software?

Libbiosig by Libbiosig Project

View all CVEs affecting Libbiosig →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Memory disclosure could expose sensitive data including credentials, encryption keys, or proprietary research data from the application's memory space.

🟠

Likely Case

Information leak revealing portions of process memory, potentially exposing file contents or other data being processed by the application.

🟢

If Mitigated

Limited information disclosure with no direct code execution, but potential for data exposure.

🌐 Internet-Facing: MEDIUM - Risk exists if systems process untrusted ABF files from external sources, but requires specific file format targeting.

🏢 Internal Only: LOW - Risk primarily exists in research environments processing ABF files; general enterprise systems unlikely to be affected.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires crafting malicious ABF files; no authentication needed if application processes external files.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check upstream repository for fixes after commit 5462afb0

Vendor Advisory: https://talosintelligence.com/vulnerability_reports/TALOS-2025-2323

Restart Required: Yes

Instructions:

1. Check current libbiosig version. 2. Update to patched version from official repository. 3. Restart applications using libbiosig. 4. Recompile if using library directly.

🔧 Temporary Workarounds

Restrict ABF file processing

all

Limit processing of ABF files to trusted sources only

Input validation

all

Implement file validation before passing to libbiosig parser

🧯 If You Can't Patch

Isolate systems processing ABF files from sensitive networks
Implement strict file upload controls and scanning for ABF files

🔍 How to Verify

Check if Vulnerable:

Check libbiosig version: biosig-tools --version or examine library version in applications

Check Version:

biosig-tools --version 2>/dev/null || find /usr -name '*biosig*' -type f | xargs strings 2>/dev/null | grep -i version

Verify Fix Applied:

Verify updated version no longer matches vulnerable versions; test with known safe ABF files

📡 Detection & Monitoring

Log Indicators:

Application crashes when processing ABF files
Memory access violation errors in application logs

Network Indicators:

Unusual ABF file uploads to research systems
Multiple failed file processing attempts

SIEM Query:

source="*application.log*" AND ("segmentation fault" OR "memory violation" OR "abf")

📊 Metadata

CVE ID: CVE-2025-64736

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L

CWE: CWE-125

Published: March 3, 2026

Last Updated: March 5, 2026

🔗 References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2323 Exploit,Third Party Advisory
https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2323 Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-64736, you might also want to check these: