PT-2025-29273 · Mvfst · Mvfst

Published

2025-07-11

·

Updated

2025-07-12

·

CVE-2025-30403

Report an issue
CVSS v3.1
8.1
VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

**Name of the Vulnerable Software and Affected Versions:**

mvfst versions prior to v2025.07.07.00

**Description:**

A heap-buffer-overflow vulnerability exists in mvfst. This issue occurs when processing a specially crafted message during a QUIC session.

**Recommendations:**

Update mvfst to version v2025.07.07.00 or later.

Fix

Related Identifiers

CVE-2025-30403

Affected Products

Mvfst