CVE-2025-47816: libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an ...

Severity: Critical

CVSS Score: 9.1

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause an spvxml-helpers.c spvxml_parse_attributes out-of-bounds read, related to extra content at the end of a document.