CVE-2025-23016 | FastCGI fcgi2 up to 2.4.4 fcgiapp.c nameLen/valueLen integer overflow (Issue 67)

Posted by Angelo Barbosa | Jan 10, 2025 | CVE

A vulnerability was found in FastCGI fcgi2 up to 2.4.4 and classified as critical. Affected by this issue is some unknown functionality of the file fcgiapp.c. The manipulation of the argument nameLen/valueLen leads to integer overflow.

This vulnerability is handled as CVE-2025-23016. Local access is required to approach this attack. There is no exploit available.

CVE-2025-23016 | FastCGI fcgi2 up to 2.4.4 fcgiapp.c nameLen/valueLen integer overflow (Issue 67)

Related Posts

CVE-2024-6439 | SourceCodester Home Owners Collection Management System 1.0 Users.php img unrestricted upload

VDB-272287 | Amazon AWS AppFlow WooCommerce Connector server-side request forgery

CVE-2024-30733 | ROS Kinetic Kame 1 Arrays denial of service

CVE-2024-23187 | Open-Xchange OX App Suite up to 8.21 Content-ID Embedding cross site scripting