CVE-2025-22408

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: versions prior to the fixed version (affected versions not specified)

Description: A use-after-free issue exists in the rfc check send cmd function within rfc utils.cc. This could lead to remote code execution without requiring additional privileges or user interaction.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Use After Free

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-94

Related Identifiers

ASB-A-375397164

CVE-2025-22408

Affected Products

Rfc Utils.Cc

CVE-2025-22408

Weakness Enumeration

Related Identifiers

Affected Products

References · 10