We use cookies to improve your experience on our site.
AVID-2026-R1704
Description
Divide By Zero in dlib (CVE-2025-4637)
Details
Divide By Zero vulnerability in davisking dlib allows
remote attackers to cause a denial of service via a crafted file.
.This issue affects dlib: before <19.24.7.
Reason for inclusion in AVID: The CVE pertains to the dlib library, a widely-used AI/ML utility library. Vulnerability (divide-by-zero leading to DoS) affects software components commonly used to build/train/deploy AI systems, i.e., a software supply chain issue within AI stacks. It is a security vulnerability with evidence in the CVE/NVD description and referenced PR, indicating a concrete flaw in a software dependency used in AI pipelines.
References
Affected or Relevant Artifacts
- Developer: davisking
- Deployer: davisking
- Artifact Details:
| Type | Name |
|---|---|
| System | dlib |
Impact
AVID Taxonomy Categorization
- Risk domains: Security
- SEP subcategories: S0100: Software Vulnerability
- Lifecycle stages: L06: Deployment
CWE
| ID | Description |
|---|---|
| CWE-369 | CWE-369 Divide By Zero |
Other information
- Report Type: Advisory
- Credits:
- Date Reported: 2025-05-14
- Version: 0.3.3
- AVID Entry