CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-26819: Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections.

8.6 CVSS

Description

Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections.

CVSS Base Severity: HIGH

CVSS Base Score: 8.6

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Vendor: getmonero

Product: Monero

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.99% (scored less or equal to compared to others)

EPSS Date: 2025-03-15 (when was this score calculated)

2025-02-15 00:36:39 UTC
CVE

Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections.