CVE-2025-57275
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-10-01
Last updated on: 2025-10-21
Assigner: MITRE
Description
Description
Storage Performance Development Kit (SPDK) 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK - lib/nvmf.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| intel | storage_performance_development_kit | 25.09 |
| intel | storage_performance_development_kit | 25.05 |
| intel | storage_performance_development_kit | 25.05.1 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-120 | The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a buffer overflow issue in the NVMe-oF target component of the Storage Performance Development Kit (SPDK) version 25.05. A buffer overflow occurs when more data is written to a buffer than it can hold, potentially leading to unexpected behavior or security risks.
How can this vulnerability impact me? :
The buffer overflow vulnerability in the NVMe-oF target component could allow an attacker to cause a crash, execute arbitrary code, or compromise the affected system's stability and security.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70