CVE Catalog
CVE-2025-61023
HighCVSS 7.5Exploitation Probability (EPSS)
Low risk0.48%
38th percentile — higher than 38% of all known CVEs
Summary
An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
Risk Assessment
An attacker can remotely cause the database server to become unavailable, disrupting applications that rely on Virtuoso.
Recommendation
Immediately update the software to the latest version containing a fix for this vulnerability, or apply temporary access restrictions to the server.
Original NVD description (English source)
An issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.

