U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database

Vulnerability Change Records for CVE-2025-6021

Change History

Initial Analysis by NIST 10/22/2025 9:08:44 AM

Action Type Old Value New Value
Added CWE 

								
							
							
								
							
						
								
							
								
CWE-787

								
								
					

					

						Added
						CPE Configuration
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
OR
          *cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:* versions up to (excluding) 2.14.4

								
								
					

					

						Added
						CPE Configuration
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
OR
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:jboss_core_services:-:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.12:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_tus:8.8:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_eus:8.8:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:9.2:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.13:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:9.0_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.0_s390x:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.14:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.4_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.4_s390x:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.4_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.4_s390x:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:9.4:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_eus:9.4:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.15:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions:9.4_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.17:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.16:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.15:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.15:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.15:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_power:4.15:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.16:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.16:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.16:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_power:4.16:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_power:4.13:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.13:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.13:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.13:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_power:4.14:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.14:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.14:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.14:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform:4.18:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_eus:9.6:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:9.6_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:9.6_s390x:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.6_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server_aus:9.6:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_eus:10.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64:10.0_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_arm_64_eus:10.0_aarch64:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:10.0_s390x:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:10.0_s390x:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:10.0_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:10.0_ppc64le:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.17:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_arm64:4.18:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.17:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_ibm_z:4.18:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.17:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_linuxone:4.18:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_power:4.17:*:*:*:*:*:*:*
          *cpe:2.3:a:redhat:openshift_container_platform_for_power:4.18:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:in-vehicle_operating_system:1.0:*:*:*:*:*:*:*

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
CISA-ADP: https://gitlab.gnome.org/GNOME/libxml2/-/issues/926 Types: Exploit, Issue Tracking, Vendor Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:10630 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:10698 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:10699 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:11580 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12098 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12099 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12199 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12237 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12239 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12240 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:12241 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:13267 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:13289 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:13325 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:13335 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:13336 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:14059 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:14396 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:15308 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/errata/RHSA-2025:15672 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://access.redhat.com/security/cve/CVE-2025-6021 Types: Third Party Advisory

								
								
					

					

						Added
						Reference Type
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
Red Hat, Inc.: https://bugzilla.redhat.com/show_bug.cgi?id=2372406 Types: Issue Tracking