CVE-2025-55181

Name of the Vulnerable Software and Affected Versions proxygen (affected versions not specified)

Description An excessively large HTTP request or response body—greater than 2^31 bytes—can cause an infinite loop within the proxygen::coro::HTTPQuicCoroSession component. This loop obstructs the event loop and continuously adds data to a std::vector in each iteration, resulting in unrestricted memory consumption and potential process exhaustion.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.