transport/fc.rs: panic attempting to send MAX_DATA with value larger max varint

June 26, 2025 invoker category_cve

CVE Details

Basic Information

Title transport/fc.rs: panic attempting to send MAX_DATA with value larger max varint
Type cve
Published 2025-06-26T09:30:03.893Z
Last Seen

Product Information

Vendor Mozilla
Product neqo
Version 0.4.24

CVSS Information

Base Score 2.3 (LOW)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/AU:Y/R:A/RE:L/U:Clear
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description This vulnerability in Mozilla Neqo involves improper input validation leading to an unexploitable crash, posing a low risk.
AI Severity Low
Vendor Mozilla
Product Mozilla Neqo
Affected Version 0.4.24, 0.13.2

Affected Products

  • Mozilla neqo 0.4.24

Additional Information

CVE List
CWE List CWE-20
Bulletin Family

Description

Improper Input Validation vulnerability in Mozilla neqo leads to an unexploitable crash. This issue affects neqo: from 0.4.24 through 0.13.2.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.