CVE-2025-65086 - Vulnerability Details

- Out-of-bounds write in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share

Description

An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to execute arbitrary code when a specially crafted VC6 file is being parsed.

Published: 2026-05-12

Score: 8.4 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

An out‑of‑bounds write occurs when Ashlar‑Vellum attempts to parse a specially crafted VC6 file. The vulnerability, categorized as CWE‑787, allows an attacker to place data outside the intended memory bounds, which can lead to execution of arbitrary code. The impact includes full compromise of the affected system’s confidentiality, integrity, and availability.

Affected Systems

The affected products are Ashlar‑Vellum Argon, Cobalt, Cobalt Share, Lithium, and Xenon. Any build of these products with version 12.6.1204.216 or earlier is vulnerable. Updated builds beginning with 12.6.1204.217 contain the fix.

Risk and Exploitability

The CVSS score of 8.4 reflects a high severity with a likely impact on the entire system. Although no EPSS score is provided, the lack of CVE exploitation data does not mitigate the risk posed by the serious vulnerability. The vulnerability has not been identified in CISA’s KEV catalog. The most likely attack vector would involve an attacker delivering a malicious VC6 file to a system that processes such files, which requires either direct file upload or remote code execution via a file‑parsing interface. Successful exploitation would give the attacker the ability to run arbitrary code on the target system.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Ashlar-Vellum

Cobalt

unaffected

Version	Status	Constraints
`0`	affected	≤ 12.6.1204.216

Ashlar-Vellum

Xenon

unaffected

Version	Status	Constraints
`0`	affected	≤ 12.6.1204.216

Ashlar-Vellum

Argon

unaffected

Version	Status	Constraints
`0`	affected	≤ 12.6.1204.216

Ashlar-Vellum

Lithium

unaffected

Version	Status	Constraints
`0`	affected	≤ 12.6.1204.216

Ashlar-Vellum

Cobalt Share

unaffected

Version	Status	Constraints
`0`	affected	≤ 12.6.1204.216

Configuration 1 [-]

OR	cpe:2.3:a:ashlar:argon::::::::
	cpe:2.3:a:ashlar:cobalt::::::::
	cpe:2.3:a:ashlar:cobalt_share::::::::
	cpe:2.3:a:ashlar:lithium::::::::
	cpe:2.3:a:ashlar:xenon::::::::

No data.

Vendor Product Confidence Versions

Ashlar Vellum

Argon

100%

Version	Status	Scheme	Platform
`[0,12.6.1204.216]`	affected	generic	—

Ashlar Vellum

Cobalt

100%

Version	Status	Scheme	Platform
`[0,12.6.1204.216]`	affected	generic	—

Ashlar Vellum

Cobalt Share

100%

Version	Status	Scheme	Platform
`[0,12.6.1204.216]`	affected	generic	—

Ashlar Vellum

Lithium

100%

Version	Status	Scheme	Platform
`[0,12.6.1204.216]`	affected	generic	—

Ashlar Vellum

Xenon

100%

Version	Status	Scheme	Platform
`[0,12.6.1204.216]`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

Vendor Solution

Ashlar-Vellum recommends users update to build 12.6.1204.217 and later.

OpenCVE Recommended Actions

Update Ashlar‑Vellum products to build 12.6.1204.217 or later, as recommended by the vendor.
If an immediate update is not possible, isolate the affected systems from receiving or processing VC6 files until a patch can be applied.
Implement file integrity monitoring and restrict permissions on the file parsing component to limit the impact of any potential exploitation.

Generated by OpenCVE AI on May 12, 2026 at 22:41 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Local

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction Active

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00013.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://www.cisa.gov/news-events/ics-advisories/icsa-25-329-01

History

Thu, 14 May 2026 15:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Ashlar Ashlar argon Ashlar cobalt Ashlar cobalt Share Ashlar lithium Ashlar xenon
CPEs		cpe:2.3:a:ashlar:argon:::::::: cpe:2.3:a:ashlar:cobalt:::::::: cpe:2.3:a:ashlar:cobalt_share:::::::: cpe:2.3:a:ashlar:lithium:::::::: cpe:2.3:a:ashlar:xenon::::::::
Vendors & Products		Ashlar Ashlar argon Ashlar cobalt Ashlar cobalt Share Ashlar lithium Ashlar xenon
Metrics		cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}`

Wed, 13 May 2026 11:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Ashlar Vellum Ashlar Vellum argon Ashlar Vellum cobalt Ashlar Vellum cobalt Share Ashlar Vellum lithium Ashlar Vellum xenon
Vendors & Products		Ashlar Vellum Ashlar Vellum argon Ashlar Vellum cobalt Ashlar Vellum cobalt Share Ashlar Vellum lithium Ashlar Vellum xenon

Tue, 12 May 2026 22:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 12 May 2026 21:00:00 +0000

Type	Values Removed	Values Added
Description		An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to execute arbitrary code when a specially crafted VC6 file is being parsed.
Title		Out-of-bounds write in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share
Weaknesses		CWE-787
References		https://www.cisa.gov/news-events/ics-advisories/icsa-25-329-01
Metrics		cvssV4_0 `{'score': 8.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`

Subscriptions

Ashlar Argon Cobalt Cobalt Share Lithium Xenon

Ashlar Vellum Argon Cobalt Cobalt Share Lithium Xenon

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2026-05-12T20:22:42.842Z

Updated: 2026-05-12T21:12:42.853Z

Reserved: 2025-11-17T16:43:44.054Z

Link: CVE-2025-65086

Vulnrichment

Updated: 2026-05-12T21:12:37.746Z

NVD

Status : Analyzed

Published: 2026-05-12T21:16:13.437

Modified: 2026-05-14T14:57:52.040

Link: CVE-2025-65086

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-13T10:35:49Z

Weaknesses

CWE-787

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction Active

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object