CVE-2025-54351
8.9
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
Summary
In iperf before 3.19.1, net.c has a buffer overflow when –skip-rx-copy is used (for MSG_TRUNC in recv).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ES | iperf3 | 0 < 3.19.1 | affected |
Weaknesses
- CWE-420: CWE-420 Unprotected Alternate Channel
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://github.com/esnet/iperf/releases/tag/3.19.1
- https://github.com/esnet/iperf/commit/969b7f70c447513e92c9798f22e82b40ebc53bf0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.