Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-54472

Опубликовано: 14 авг. 2025
Источник: nvd
CVSS3: 7.5
EPSS Низкий

Описание

Unlimited memory allocation in redis protocol parser in Apache bRPC (all versions < 1.14.1) on all platforms allows attackers to crash the service via network.

Root Cause: In the bRPC Redis protocol parser code, memory for arrays or strings of corresponding sizes is allocated based on the integers read from the network. If the integer read from the network is too large, it may cause a bad alloc error and lead to the program crashing. Attackers can exploit this feature by sending special data packets to the bRPC service to carry out a denial-of-service attack on it. The bRPC 1.14.0 version tried to fix this issue by limited the memory allocation size, however, the limitation checking code is not well implemented that may cause integer overflow and evade such limitation. So the 1.14.0 version is also vulnerable, although the integer range that affect version 1.14.0 is different from that affect version < 1.14.0.

Affected scenarios: Using bRPC as a Redis server to provide network s

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:apache:brpc:*:*:*:*:*:*:*:*
Версия до 1.14.1 (исключая)

EPSS

Процентиль: 35%
0.00141
Низкий

7.5 High

CVSS3

Дефекты

CWE-190

Связанные уязвимости

debian логотип

CVE-2025-54472

CVSS3: 7.5
debian
26 дней назад

Unlimited memory allocation in redis protocol parser in Apache bRPC (a ...

github логотип

GHSA-fgf7-x5pv-vcc3

CVSS3: 7.5
github
26 дней назад

Unlimited memory allocation in redis protocol parser in Apache bRPC (all versions < 1.14.1) on all platforms allows attackers to crash the service via network. Root Cause: In the bRPC Redis protocol parser code, memory for arrays or strings of corresponding sizes is allocated based on the integers read from the network. If the integer read from the network is too large, it may cause a bad alloc error and lead to the program crashing. Attackers can exploit this feature by sending special data packets to the bRPC service to carry out a denial-of-service attack on it. The bRPC 1.14.0 version tried to fix this issue by limited the memory allocation size, however, the limitation checking code is not well implemented that may cause integer overflow and evade such limitation. So the 1.14.0 version is also vulnerable, although the integer range that affect version 1.14.0 is different from that affect version < 1.14.0. Affected scenarios: Using bRPC as a Redis server to provide networ...

EPSS

Процентиль: 35%
0.00141
Низкий

7.5 High

CVSS3

Дефекты

CWE-190