CVE Vulnerabilities

CVE-2025-41653

Insufficient Resource Pool

Published: May 27, 2025 | Modified: May 27, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the devices web server functionality by sending a specially crafted HTTP request with a malicious header, potentially causing the server to crash or become unresponsive.

Weakness

The product’s resource pool is not large enough to handle peak demand, which allows an attacker to prevent others from accessing the resource by using a (relatively) large number of requests for resources.

Potential Mitigations

References