{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T06:31:03.926","vulnerabilities":[{"cve":{"id":"CVE-2025-4821","sourceIdentifier":"cna@cloudflare.com","published":"2025-06-18T16:15:28.527","lastModified":"2025-11-06T22:22:53.050","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Impact\n\nCloudflare quiche was discovered to be vulnerable to incorrect congestion window growth, which could cause it to send data at a rate faster than the path might actually support.\n\nAn unauthenticated remote attacker can exploit the vulnerability by first completing a handshake and initiating a congestion-controlled data transfer towards itself. Then, it could manipulate the victim's congestion control state by sending ACK frames covering a large range of packet numbers (including packet numbers that had never been sent); see RFC 9000 Section 19.3. The victim could grow the congestion window beyond typical expectations and allow more bytes in flight than the path might really support. In extreme cases, the window might grow beyond the limit of the internal variable's type, leading to an overflow panic.\n\n\n\nPatches\n\n\nquiche 0.24.4 is the earliest version containing the fix for this issue."},{"lang":"es","value":"Se descubrió que Quiche de Cloudflare era vulnerable a un crecimiento incorrecto de la ventana de congestión, lo que podría provocar el envío de datos a una velocidad superior a la que la ruta realmente admite. Un atacante remoto no autenticado puede explotar esta vulnerabilidad completando primero un protocolo de enlace e iniciando una transferencia de datos controlada por congestión hacia sí mismo. Posteriormente, podría manipular el estado de control de congestión de la víctima enviando tramas ACK que abarcan una amplia gama de números de paquetes (incluidos los que nunca se enviaron); consulte la sección 19.3 de RFC 9000. La víctima podría ampliar la ventana de congestión más allá de lo esperado y permitir más bytes en tránsito de los que la ruta realmente admite. En casos extremos, la ventana podría sobrepasar el límite del tipo de la variable interna, lo que provocaría un pánico por desbordamiento. Parches: Quiche 0.24.4 es la versión más antigua que contiene la solución para este problema."}],"metrics":{"cvssMetricV31":[{"source":"cna@cloudflare.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"cna@cloudflare.com","type":"Secondary","description":[{"lang":"en","value":"CWE-770"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cloudflare:quiche:*:*:*:*:*:rust:*:*","versionEndExcluding":"0.24.4","matchCriteriaId":"8DAD3DB7-C853-47F1-91E3-BB4B1238498C"}]}]}],"references":[{"url":"https://github.com/cloudflare/quiche/security/advisories/GHSA-6m38-4r9r-5c4m","source":"cna@cloudflare.com","tags":["Vendor Advisory"]}]}}]}