{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2025-24336","assignerOrgId":"ede6fdc4-6654-4307-a26d-3331c018e2ce","state":"PUBLISHED","assignerShortName":"jpcert","dateReserved":"2025-01-20T05:53:08.631Z","datePublished":"2025-01-31T00:02:56.347Z","dateUpdated":"2025-01-31T17:43:46.505Z"},"containers":{"cna":{"affected":[{"vendor":"General Incorporated Association OCF","product":"SXF Common Library","versions":[{"version":"all versions","status":"affected"}]}],"descriptions":[{"lang":"en","value":"SXF Common Library handles input data improperly. If a product using the library reads a crafted file, the product may be crashed."}],"problemTypes":[{"descriptions":[{"description":"Improper handling of structural elements","lang":"en-US","cweId":"CWE-237","type":"CWE"}]}],"references":[{"url":"https://ocf.or.jp/about/download/sxflibrary"},{"url":"https://jvn.jp/en/jp/JVN23839833/"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en-US","value":"GENERAL"}],"cvssV3_0":{"version":"3.0","baseSeverity":"LOW","baseScore":3.3,"vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}}],"providerMetadata":{"orgId":"ede6fdc4-6654-4307-a26d-3331c018e2ce","shortName":"jpcert","dateUpdated":"2025-01-31T00:02:56.347Z"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-01-31T17:43:37.561152Z","id":"CVE-2025-24336","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-01-31T17:43:46.505Z"}}]}}