Executive Summary



This vulnerability is currently undergoing analysis and not all information is available. Please check back soon to view the completed vulnerability summary
Informations
Name CVE-2025-53605 First vendor Publication 2025-07-05
Vendor Cve Last vendor Modification 2025-07-05

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

The protobuf crate before 3.7.2 for Rust allows uncontrolled recursion in the protobuf::coded_input_stream::CodedInputStream::skip_group parsing of unknown fields in untrusted input.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53605

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-674 Uncontrolled Recursion

Sources (Detail)

https://crates.io/crates/protobuf
https://github.com/stepancheg/rust-protobuf/issues/749
https://rustsec.org/advisories/RUSTSEC-2024-0437
Source Url

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2025-07-05 09:21:15
  • First insertion