CNNVD-202506-2542 Information

CNNVD ID

CNNVD-202506-2542

Related CVE

CVE-2025-4821

• CNNVD Published: 2025-06-18

Description (Chinese)

quiche是Cloudflare开源的一个 IETF 指定的 QUIC 传输协议和 HTTP/3 的实现。 quiche存在安全漏洞，该漏洞源于拥塞窗口增长不正确，可能导致发送数据速率超过路径实际支持能力。

Description (English)

quiche is the realization of a specified IETF QUIC transfer protocol and HTTP/3 from the Open Source of Cloudflare. There is a security loophole in quiche, which stems from the incorrect growth of the congested window, which may lead to data being sent at a rate that exceeds the actual support capacity of the path.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

CloudFoundry

Published

2025-06-18

Last Modified

2026-02-24

References

https://github.com/cloudflare/quiche/security/advisories/GHSA-6m38-4r9r-5c4m

Patch

https://github.com/cloudflare/quiche/releases