What is CVE-2025-49794?

CVE-2025-49794 is a critical-severity vulnerability in Red Hat Cert-manager Operator For Openshift 1.16, classified under CWE-825. CVSS score: 9.1/10. Published 2025-06-16.

How severe is CVE-2025-49794?

Critical severity. CVSS v3 base score is 9.1 out of 10.

Is CVE-2025-49794 known to be exploited?

9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Red Hat Cert-manager Operator For Openshift 1.16

CVE-2025-49794

A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the <sch:name path="..."/> schema elements. This flaw allows a malicious actor to cr…

EPSS: 0.004 (63.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.1 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H.

Affected products

Red Hat Cert-manager Operator For Openshift 1.16 — versions v1.16.5-1760515757, sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b
Red Hat File Integrity Operator 1 — versions sha256:364d11af112a5b1d3f28c9ea8b7aac678e111b9c7fca0516d61036904f318605, v1.3
Red Hat Openshift File Integrity Operator - Fio 1 — versions v1.3
Red Hat Enterprise Linux 10 — versions 0:2.12.5-7.el10_0
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7 Extended Lifecycle Support — versions 0:2.9.1-6.el7_9.10
Red Hat Enterprise Linux 8 — versions 0:2.9.7-21.el8_10.1
Red Hat Enterprise Linux 8.2 Advanced Update Support — versions 0:2.9.7-9.el8_2.3
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support — versions 0:2.9.7-9.el8_4.6
Red Hat Enterprise Linux 8.4 Extended Update Support Long-life Add-on — versions 0:2.9.7-9.el8_4.6

Weakness classification (CWE)

CWE-825

Public proof-of-concept exploits

References

secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)

Frequently asked questions

What is CVE-2025-49794?: CVE-2025-49794 is a critical-severity vulnerability in Red Hat Cert-manager Operator For Openshift 1.16, classified under CWE-825. CVSS score: 9.1/10. Published 2025-06-16.
How severe is CVE-2025-49794?: Critical severity. CVSS v3 base score is 9.1 out of 10.
Is CVE-2025-49794 known to be exploited?: 9 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.