CVE-2025-34096
Published: 10 July 2025
Summary
CVE-2025-34096 is a critical-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability. Its CVSS base score is 9.3 (Critical).
Operationally, ranked in the top 1.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
A stack-based buffer overflow vulnerability exists in Easy File Sharing HTTP Server version 7.2 and is tracked as CVE-2025-34096. The flaw occurs in the /sendemail.ghp endpoint when processing a POST request that supplies an overly long Email parameter; the application performs no length validation, leading to memory corruption classified under CWE-119. The issue carries a CVSS 4.0 score of 9.3.
An unauthenticated remote attacker can exploit the condition by sending a single crafted POST request to the affected endpoint. Successful exploitation grants the attacker the ability to execute arbitrary code with the privileges of the server process.
Public references include a Metasploit module, an Exploit-DB entry, and a VulnCheck advisory that document the vulnerability and provide exploit code, but no vendor patch or mitigation guidance is described in the available information. The EPSS score stands at 0.6655 with no indicated rise from a lower baseline.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-21030
Vulnerability details
A stack-based buffer overflow vulnerability exists in Easy File Sharing HTTP Server version 7.2. The flaw is triggered when a crafted POST request is sent to the /sendemail.ghp endpoint containing an overly long Email parameter. The application fails to properly…
more
validate the length of this field, resulting in a memory corruption condition. An unauthenticated remote attacker can exploit this to execute arbitrary code with the privileges of the server process.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Ongoing control assessments and code testing (static/dynamic analysis, fuzzing) surface memory buffer restriction failures, which are then remediated before release.
Managed runtimes used by platform-independent applications (e.g., JVM, CLR) enforce memory safety, preventing most buffer overflows that require direct memory manipulation.
Memory protections (e.g., W^X, ASLR) make exploitation of buffer-boundary violations far harder to turn into code execution.
Detects exploitation attempts that produce memory corruption, crashes, or anomalous behavior.