#VU103646 Integer overflow in cURL - CVE-2025-0725


Vulnerability identifier: #VU103646

Vulnerability risk: High

CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2025-0725

CWE-ID: CWE-190

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
cURL
Client/Desktop applications / Other client software

Vendor: curl.haxx.se

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow when handling gzip decompression of content-encoded HTTP responses with the CURLOPT_ACCEPT_ENCODING option using zlib 1.2.0.3 or older. A remote attacker can send specially crafted response to the application, trigger an integer overflow and execute arbitrary code on the target system.


Mitigation
Install updates from vendor's website.

Vulnerable software versions

cURL: 7.10.5 - 8.11.1

External links
https://curl.se/docs/CVE-2025-0725.html

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?


Latest bulletins with this vulnerability


Envoy update for third-party components
Splunk Enterprise Security update for third-party components
Multiple vulnerabilities in IBM Watson Speech Services Cartridge
Dell EMC NetWorker vProxy update for third-party components
Integer overflow in MySQL Enterprise Backup
Multiple vulnerabilities in Oracle HTTP Server
Integer overflow in Oracle Commerce Guided Search
Anolis OS update for curl
Dell SmartFabric Manager update for third-party components
Multiple vulnerabilities in Dell Storage Resource Manager (SRM) and Dell Storage Monitoring and Reporting (SMR)