CVE-2025-23016

CVSS v3.1

9.3

Critical

Vector

AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions FastCGI fcgi2 versions 2.x through 2.4.4

Description The issue is related to an integer overflow and a resultant heap-based buffer overflow in the FastCGI library, specifically in the ReadParams function in fcgiapp.c. This occurs when crafted nameLen or valueLen values are sent in data to the IPC socket. The vulnerability can be exploited to execute arbitrary code on vulnerable embedded devices, including cameras and IoT equipment. It is particularly concerning for 32-bit systems due to the lack of modern security features. The exploitation requires local or network access to the FastCGI IPC socket and the ability to send crafted parameters.

Recommendations For FastCGI fcgi2 versions 2.x through 2.4.4, upgrade to version 2.4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the IPC socket to minimize the risk of exploitation. Avoid using crafted nameLen or valueLen values in the affected API endpoint until the issue is resolved.

Exploit

Fix

RCE

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-1395

Related Identifiers

ALT-PU-2025-6557

AZL-55397

AZL-55443

BDU:2025-05008

BDU:2025-09005

CVE-2025-23016

DLA-4329-1

MGASA-2025-0144

OESA-2025-1475

OPENSUSE-SU-2025:15348-1

RHSA-2025:8625

RHSA-2025:8635

RHSA-2025:8636

RHSA-2025:8677

RHSA-2025:8678

RHSA-2025:8696

RHSA-2025:8697

RHSA-2025:8698

RHSA-2025:8703

RHSA-2025:8829

RHSA-2025:8890

SUSE-SU-2025:02369-1

SUSE-SU-2025:02372-1

SUSE-SU-2025_02369-1

SUSE-SU-2025_02372-1

USN-7486-1

Affected Products

Alt Linux

Astra Linux

Debian

Fastcgi

Linuxmint

Red Os

Suse

Ubuntu

CVE-2025-23016

Weakness Enumeration

Related Identifiers

Affected Products

References · 81