CVE-2025-32947

Name of the Vulnerable Software and Affected Versions PeerTube (affected versions not specified)

Description This issue allows an attacker to cause the PeerTube server to become unresponsive due to an infinite loop in the "inbox" endpoint when receiving crafted ActivityPub activities. The estimated number of potentially affected devices worldwide is not available. Details about real-world incidents where this issue was exploited are not provided. The issue is related to the /inbox API endpoint, where an infinite loop can occur when processing certain ActivityPub activities.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.