Уязвимость CVE-2025-0725

CVE-2025-0725

CVSS3: 7.3

ubuntu

5 месяцев назад

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow.

CVE-2025-0725

CVSS3: 4

redhat

5 месяцев назад

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow.

CVE-2025-0725

CVSS3: 7.3

nvd

5 месяцев назад

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow.

CVE-2025-0725

CVSS3: 7.3

debian

5 месяцев назад

When libcurl is asked to perform automatic gzip decompression of conte ...

GHSA-vvqh-cqpj-5537

CVSS3: 7.3

github

5 месяцев назад

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow.

exploitDog

CVE-2025-0725

Описание

Возможность эксплуатации

Связанные уязвимости