Cyber Resilience

CVE-2025-0430

High

Published: 17 January 2025

Published
17 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0139 80.8th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-0430 is a high-severity NULL Pointer Dereference (CWE-476) vulnerability in Cisa (inferred from references). Its CVSS base score is 8.7 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 19.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-2 (Flaw Remediation).

Deeper analysis

Belledonne Communications Linphone-Desktop is affected by a NULL Dereference vulnerability tracked as CVE-2025-0430 and assigned CWE-476. The flaw can trigger a denial-of-service condition and carries a CVSS 4.0 score of 8.7 reflecting network attack vector, low attack complexity, and no required privileges or user interaction.

A remote unauthenticated attacker can send crafted input over the network to induce the NULL dereference, causing the application to crash and producing a denial-of-service state without further impact on confidentiality or integrity.

The issue is referenced in CISA advisory ICSA-25-014-04.

EPSS remains low, with a current value of 0.0139 and a peak of 0.0181.

EU & UK References

Vulnerability details

Belledonne Communications Linphone-Desktop is vulnerable to a NULL Dereference vulnerability, which could allow a remote attacker to create a denial-of-service condition.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

NULL dereference enables remote application crash via exploitation for endpoint DoS.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-40413Shared CWE-476
CVE-2025-57155Shared CWE-476
CVE-2026-28390Shared CWE-476
CVE-2026-23952Shared CWE-476
CVE-2025-57156Shared CWE-476
CVE-2025-63647Shared CWE-476
CVE-2025-69624Shared CWE-476
CVE-2024-55193Shared CWE-476
CVE-2025-63648Shared CWE-476
CVE-2026-25795Shared CWE-476

Affected Assets

Cisa
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires identification, reporting, and correction of flaws like this NULL dereference vulnerability to prevent remote DoS exploitation.

preventdetect

Provides specific protections against denial-of-service events triggered by remote exploitation of the NULL dereference flaw.

prevent

Mandates proper error handling to mitigate application crashes from null pointer dereferences caused by malicious network inputs.

References