CVE-2025-30347 Information

Description

Varnish Enterprise before 6.0.13r13 allows remote attackers to obtain sensitive information via an out-of-bounds read for range requests on ephemeral MSE4 stevedore objects.

Reference

https://docs.varnish-software.com/security/VEV00001/