PT-2025-44594 · Varnish · Varnish Cache
Published
2025-10-31
·
Updated
2025-10-31
·
CVE-2025-30188
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Apache HTTP Cache (affected versions not specified)
Description
Malicious or unintentional API requests can be used to add a significant amount of data to caches. This can lead to the eviction of information required for the web frontend to operate, resulting in component unavailability. No publicly available exploits are known.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
DoS
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Varnish Cache