Medium severity5.3NVD Advisory· Published Apr 14, 2025· Updated Apr 15, 2026
CVE-2025-32907
CVE-2025-32907
Description
A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory. This does not allow for a full denial of service.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- access.redhat.com/errata/RHSA-2025:4439nvd
- access.redhat.com/errata/RHSA-2025:4440nvd
- access.redhat.com/errata/RHSA-2025:4508nvd
- access.redhat.com/errata/RHSA-2025:7436nvd
- access.redhat.com/errata/RHSA-2025:8128nvd
- access.redhat.com/errata/RHSA-2025:8292nvd
- access.redhat.com/security/cve/CVE-2025-32907nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.