VYPR
Critical severity9.3OSV Advisory· Published Jan 10, 2025· Updated Apr 15, 2026

CVE-2025-23016

CVE-2025-23016

Description

FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based buffer overflow) via crafted nameLen or valueLen values in data to the IPC socket. This occurs in ReadParams in fcgiapp.c.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

20

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.