CVE-2025-40820

Name of the Vulnerable Software and Affected Versions Affected products (affected versions not specified)

Description The software does not properly validate TCP sequence numbers in certain situations, accepting a wide range of values. This could allow a remote attacker to disrupt connection establishment, potentially causing a denial of service. Successful exploitation requires the attacker to inject IP packets with spoofed addresses at precise times, and the issue only impacts services using TCP.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.