CVE-2025-65409

Опубликовано: 30 дек. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service (DoS) via inputting an empty value as a password.

Ссылки

http://ftp.gnu.org/gnu/recutils/
Product
https://github.com/MAXEUR5/Vulnerability_Disclosures/blob/main/2025/CVE-2025-65409.md
Exploit
Third Party Advisory
https://lists.gnu.org/archive/html/bug-recutils/2025-10/msg00004.html
Mailing List
Patch
https://www.gnu.org/software/recutils/
Product
https://github.com/MAXEUR5/Vulnerability_Disclosures/blob/main/2025/CVE-2025-65409.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gnu:recutils:1.9:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00062

Низкий

7.5 High

CVSS3

Дефекты

CWE-369

Связанные уязвимости

CVE-2025-65409

CVSS3: 7.5

ubuntu

3 месяца назад

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service (DoS) via inputting an empty value as a password.

CVE-2025-65409

CVSS3: 5

redhat

3 месяца назад

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service (DoS) via inputting an empty value as a password.

CVE-2025-65409

CVSS3: 7.5

debian

3 месяца назад

A divide-by-zero in the encryption/decryption routines of GNU Recutils ...

GHSA-f643-8m38-xc64

CVSS3: 7.5

github

3 месяца назад

A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cause a Denial of Service (DoS) via inputting an empty value as a password.

EPSS

Процентиль: 20%

0.00062

Низкий

7.5 High

CVSS3

Дефекты

CWE-369