CVE-2025-2784
Published: 03 April 2025
Summary
CVE-2025-2784 is a high-severity Out-of-bounds Read (CWE-125) vulnerability in Redhat Enterprise Linux Server Aus. Its CVSS base score is 7.0 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Credential Access (T1212); ranked in the top 36.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-9569
Vulnerability details
A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP server.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Vulnerabilities in libsoup enable exploitation for credential access via improper redirect handling leaking Authorization headers (T1212) and denial of service through application crashes from OOB reads, null derefs, and HTTP/2 issues (T1499.004).
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.