{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/90894?format=json","vulnerability_id":"VCID-jabx-j5c6-xkdc","summary":"An out-of-bounds read vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.2 and Master Branch (5462afb0). A specially crafted .abf file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.","aliases":[{"alias":"CVE-2025-64736"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25966?format=json","purl":"pkg:deb/debian/biosig@3.9.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.5-1%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25964?format=json","purl":"pkg:deb/debian/biosig@2.1.2-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11m8-t2pq-gffq"},{"vulnerability":"VCID-19gb-bcj9-h3ek"},{"vulnerability":"VCID-1e8a-pecv-mban"},{"vulnerability":"VCID-1qtv-8gfn-k3d5"},{"vulnerability":"VCID-22j4-jvrz-37an"},{"vulnerability":"VCID-3q5d-53f1-mbeg"},{"vulnerability":"VCID-439v-uybe-ukee"},{"vulnerability":"VCID-4gz7-zkd7-rbfy"},{"vulnerability":"VCID-4u19-2qf4-wuda"},{"vulnerability":"VCID-4y8e-k1jm-8ua7"},{"vulnerability":"VCID-5gg7-wyxc-j7ej"},{"vulnerability":"VCID-681v-k6xq-ebc3"},{"vulnerability":"VCID-6a53-kzbe-dfen"},{"vulnerability":"VCID-6gfn-fcbc-13gh"},{"vulnerability":"VCID-89p2-5f2s-pbb3"},{"vulnerability":"VCID-8vtz-crwx-mqcq"},{"vulnerability":"VCID-8z6c-7hq3-nfgg"},{"vulnerability":"VCID-apaq-dbph-5bcs"},{"vulnerability":"VCID-btax-7kvz-yygu"},{"vulnerability":"VCID-f8rc-qyyv-7be1"},{"vulnerability":"VCID-fej6-3865-qqem"},{"vulnerability":"VCID-gkpy-a414-9fe2"},{"vulnerability":"VCID-gz43-h6pk-eugg"},{"vulnerability":"VCID-jabx-j5c6-xkdc"},{"vulnerability":"VCID-jfpq-yp9d-w3fq"},{"vulnerability":"VCID-meyh-jfdn-qygx"},{"vulnerability":"VCID-murc-rk4g-97cj"},{"vulnerability":"VCID-nuze-px6m-mkcx"},{"vulnerability":"VCID-p3bz-1qpk-4qb7"},{"vulnerability":"VCID-p3zj-6f8a-4qgp"},{"vulnerability":"VCID-pk32-xmmu-syca"},{"vulnerability":"VCID-q9k5-8vt9-bfgz"},{"vulnerability":"VCID-qmv4-87m2-3qc2"},{"vulnerability":"VCID-ragy-pr9p-37fc"},{"vulnerability":"VCID-rats-fhv4-r7hd"},{"vulnerability":"VCID-rxa5-81m8-hfas"},{"vulnerability":"VCID-t5ng-z1ef-m7ak"},{"vulnerability":"VCID-v195-uuwb-y7bj"},{"vulnerability":"VCID-w1pe-d7h1-2fby"},{"vulnerability":"VCID-w2bv-6vtb-sbh6"},{"vulnerability":"VCID-xdbg-fgen-nbds"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.1.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/25965?format=json","purl":"pkg:deb/debian/biosig@2.5.0-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11m8-t2pq-gffq"},{"vulnerability":"VCID-19gb-bcj9-h3ek"},{"vulnerability":"VCID-1e8a-pecv-mban"},{"vulnerability":"VCID-1qtv-8gfn-k3d5"},{"vulnerability":"VCID-22j4-jvrz-37an"},{"vulnerability":"VCID-3q5d-53f1-mbeg"},{"vulnerability":"VCID-439v-uybe-ukee"},{"vulnerability":"VCID-4gz7-zkd7-rbfy"},{"vulnerability":"VCID-4u19-2qf4-wuda"},{"vulnerability":"VCID-4y8e-k1jm-8ua7"},{"vulnerability":"VCID-5gg7-wyxc-j7ej"},{"vulnerability":"VCID-681v-k6xq-ebc3"},{"vulnerability":"VCID-6a53-kzbe-dfen"},{"vulnerability":"VCID-6gfn-fcbc-13gh"},{"vulnerability":"VCID-89p2-5f2s-pbb3"},{"vulnerability":"VCID-8vtz-crwx-mqcq"},{"vulnerability":"VCID-8z6c-7hq3-nfgg"},{"vulnerability":"VCID-apaq-dbph-5bcs"},{"vulnerability":"VCID-btax-7kvz-yygu"},{"vulnerability":"VCID-f8rc-qyyv-7be1"},{"vulnerability":"VCID-fej6-3865-qqem"},{"vulnerability":"VCID-gkpy-a414-9fe2"},{"vulnerability":"VCID-gz43-h6pk-eugg"},{"vulnerability":"VCID-jabx-j5c6-xkdc"},{"vulnerability":"VCID-jfpq-yp9d-w3fq"},{"vulnerability":"VCID-meyh-jfdn-qygx"},{"vulnerability":"VCID-murc-rk4g-97cj"},{"vulnerability":"VCID-nuze-px6m-mkcx"},{"vulnerability":"VCID-p3bz-1qpk-4qb7"},{"vulnerability":"VCID-p3zj-6f8a-4qgp"},{"vulnerability":"VCID-pk32-xmmu-syca"},{"vulnerability":"VCID-q9k5-8vt9-bfgz"},{"vulnerability":"VCID-qmv4-87m2-3qc2"},{"vulnerability":"VCID-ragy-pr9p-37fc"},{"vulnerability":"VCID-rats-fhv4-r7hd"},{"vulnerability":"VCID-rxa5-81m8-hfas"},{"vulnerability":"VCID-t5ng-z1ef-m7ak"},{"vulnerability":"VCID-v195-uuwb-y7bj"},{"vulnerability":"VCID-w1pe-d7h1-2fby"},{"vulnerability":"VCID-w2bv-6vtb-sbh6"},{"vulnerability":"VCID-xdbg-fgen-nbds"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.5.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/25969?format=json","purl":"pkg:deb/debian/biosig@3.9.0-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11m8-t2pq-gffq"},{"vulnerability":"VCID-1e8a-pecv-mban"},{"vulnerability":"VCID-1qtv-8gfn-k3d5"},{"vulnerability":"VCID-22j4-jvrz-37an"},{"vulnerability":"VCID-3q5d-53f1-mbeg"},{"vulnerability":"VCID-4gz7-zkd7-rbfy"},{"vulnerability":"VCID-4u19-2qf4-wuda"},{"vulnerability":"VCID-4y8e-k1jm-8ua7"},{"vulnerability":"VCID-5gg7-wyxc-j7ej"},{"vulnerability":"VCID-681v-k6xq-ebc3"},{"vulnerability":"VCID-6a53-kzbe-dfen"},{"vulnerability":"VCID-6gfn-fcbc-13gh"},{"vulnerability":"VCID-8vtz-crwx-mqcq"},{"vulnerability":"VCID-f8rc-qyyv-7be1"},{"vulnerability":"VCID-fej6-3865-qqem"},{"vulnerability":"VCID-gkpy-a414-9fe2"},{"vulnerability":"VCID-gz43-h6pk-eugg"},{"vulnerability":"VCID-jabx-j5c6-xkdc"},{"vulnerability":"VCID-jfpq-yp9d-w3fq"},{"vulnerability":"VCID-meyh-jfdn-qygx"},{"vulnerability":"VCID-nuze-px6m-mkcx"},{"vulnerability":"VCID-p3bz-1qpk-4qb7"},{"vulnerability":"VCID-p3zj-6f8a-4qgp"},{"vulnerability":"VCID-pk32-xmmu-syca"},{"vulnerability":"VCID-q9k5-8vt9-bfgz"},{"vulnerability":"VCID-qmv4-87m2-3qc2"},{"vulnerability":"VCID-ragy-pr9p-37fc"},{"vulnerability":"VCID-rxa5-81m8-hfas"},{"vulnerability":"VCID-t5ng-z1ef-m7ak"},{"vulnerability":"VCID-v195-uuwb-y7bj"},{"vulnerability":"VCID-w1pe-d7h1-2fby"},{"vulnerability":"VCID-w2bv-6vtb-sbh6"},{"vulnerability":"VCID-xdbg-fgen-nbds"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.0-1%3Fdistro=trixie"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-64736","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11029","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-64736"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64736","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64736"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1130889","reference_id":"1130889","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1130889"},{"reference_url":"https://talosintelligence.com/vulnerability_reports/TALOS-2025-2323","reference_id":"TALOS-2025-2323","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-03T15:18:10Z/"}],"url":"https://talosintelligence.com/vulnerability_reports/TALOS-2025-2323"}],"weaknesses":[{"cwe_id":125,"name":"Out-of-bounds Read","description":"The product reads data past the end, or before the beginning, of the intended buffer."}],"exploits":[],"severity_range_score":"6.1 - 6.1","exploitability":"0.5","weighted_severity":"3.7","risk_score":1.9,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jabx-j5c6-xkdc"}