CNNVD-202508-164 Information

CNNVD ID

CNNVD-202508-164

Related CVE

CVE-2025-54350

• CNNVD Published: 2025-08-03

Description (Chinese)

iperf是ESnet开源的一种主动测量 IP 网络上可实现的最大带宽的工具。 iperf 3.19.1之前版本存在安全漏洞，该漏洞源于iperf_auth.c存在Base64解码断言失败，可能导致应用程序退出。

Description (English)

iperf is an active tool for measuring the maximum bandwidth available on the ESnet open source IP network. There was a security loophole in the pre-iperf 3.19.1 version, which stemmed from the failure of iperf auth.c to decode the Base64 claim, which could lead to the withdrawal of the application.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

ESnet

Published

2025-08-03

Last Modified

2026-02-24

References

https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a https://github.com/esnet/iperf/releases/tag/3.19.1

Patch

https://github.com/esnet/iperf/releases