CVE-2025-53629

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions cpp-httplib versions prior to 0.23.0

Description cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Incoming requests using Transfer-Encoding: chunked in the header can allocate memory arbitrarily in the server, potentially leading to its exhaustion.

Recommendations Update cpp-httplib to version 0.23.0 or later.

Exploit

Fix

Resource Exhaustion

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-770

Related Identifiers

BDU:2026-00100

CVE-2025-53629

ECHO-39EE-6C8B-C400

GHSA-J6P8-779X-P5PW

GHSA-QJMQ-H3CC-QV6W

OESA-2025-1839

OESA-2025-1840

OESA-2025-1841

OESA-2025-1842

OESA-2025-1843

OPENSUSE-SU-2026:20295-1

SUSE-SU-2026:20600-1

Affected Products

Debian

Cpp-Httplib

CVE-2025-53629

Weakness Enumeration

Related Identifiers

Affected Products

References · 33