Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2025-32914

Опубликовано: 14 апр. 2025
Источник: redhat
CVSS3: 7.4
EPSS Низкий

Описание

A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.

Меры по смягчению последствий

Currently, no mitigation is available for this vulnerability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6libsoupOut of support scope
Red Hat Enterprise Linux 7libsoupAffected
Red Hat Enterprise Linux 10libsoup3FixedRHSA-2025:750513.05.2025
Red Hat Enterprise Linux 8libsoupFixedRHSA-2025:813226.05.2025
Red Hat Enterprise Linux 8libsoupFixedRHSA-2025:813226.05.2025
Red Hat Enterprise Linux 8.2 Advanced Update SupportlibsoupFixedRHSA-2025:848004.06.2025
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update SupportlibsoupFixedRHSA-2025:866309.06.2025
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update SupportlibsoupFixedRHSA-2025:848204.06.2025
Red Hat Enterprise Linux 8.6 Telecommunications Update ServicelibsoupFixedRHSA-2025:848204.06.2025
Red Hat Enterprise Linux 8.6 Update Services for SAP SolutionslibsoupFixedRHSA-2025:848204.06.2025

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=2359358libsoup: OOB Read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process

EPSS

Процентиль: 27%
0.00092
Низкий

7.4 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-32914

CVSS3: 7.4
ubuntu
2 месяца назад

A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.

nvd логотип

CVE-2025-32914

CVSS3: 7.4
nvd
2 месяца назад

A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.

msrc логотип

CVE-2025-32914

CVSS3: 7.4
msrc
около 2 месяцев назад

Описание отсутствует

debian логотип

CVE-2025-32914

CVSS3: 7.4
debian
2 месяца назад

A flaw was found in libsoup, where the soup_multipart_new_from_message ...

github логотип

GHSA-89g2-jrcc-p8r7

CVSS3: 7.4
github
2 месяца назад

A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.

EPSS

Процентиль: 27%
0.00092
Низкий

7.4 High

CVSS3