Cyber Posture

CVE-2025-0430

High

Published: 17 January 2025

Published
17 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0139 80.5th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-0430 is a high-severity NULL Pointer Dereference (CWE-476) vulnerability in Cisa (inferred from references). Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 19.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What attackers do: exploitation maps to Application or System Exploitation (T1499.004). What defenders deploy: see the NIST 800-53 controls recommended below.
Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match
prevent

Requires identification, reporting, and correction of flaws like this NULL dereference vulnerability to prevent remote DoS exploitation.

SC-5 Denial-of-service Protection good match
preventdetect

Provides specific protections against denial-of-service events triggered by remote exploitation of the NULL dereference flaw.

SI-11 Error Handling partial match
prevent

Mandates proper error handling to mitigate application crashes from null pointer dereferences caused by malicious network inputs.

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
attack.mitre.org →
Why these techniques?

NULL dereference enables remote application crash via exploitation for endpoint DoS.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

NVD Description

Belledonne Communications Linphone-Desktop is vulnerable to a NULL Dereference vulnerability, which could allow a remote attacker to create a denial-of-service condition.

Deeper analysisAI

CVE-2025-0430, published on 2025-01-17, is a NULL Dereference vulnerability (CWE-476) in Belledonne Communications Linphone-Desktop. This flaw could allow a remote attacker to create a denial-of-service condition, with a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high severity due to its network accessibility, low attack complexity, and significant availability impact.

A remote attacker requires no privileges or user interaction to exploit this vulnerability over the network with low complexity. Successful exploitation results in a denial-of-service condition, potentially crashing the affected Linphone-Desktop application and disrupting service availability without impacting confidentiality or integrity.

Mitigation details are provided in the CISA ICS Advisory ICSA-25-014-04, available at https://www.cisa.gov/news-events/ics-advisories/icsa-25-014-04.

Details

CWE(s)
CWE-476

Affected Products

Cisa
inferred from references and description; NVD did not file a CPE for this CVE

CVEs Like This One

CVE-2026-4652Shared CWE-476
CVE-2026-33282Shared CWE-476
CVE-2026-31256Shared CWE-476
CVE-2025-69649Shared CWE-476
CVE-2026-27141Shared CWE-476
CVE-2026-25795Shared CWE-476
CVE-2026-22998Shared CWE-476
CVE-2025-63648Shared CWE-476
CVE-2026-34874Shared CWE-476
CVE-2024-48615Shared CWE-476

References