CVE-2025-65404 — Classic Buffer Overflow in Streaming Media

CWE-120 — Classic Buffer Overflow4 documents4 sources

Severity

6.5MEDIUMNVD

EPSS

0.1%

top 70.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Live555 Streaming Media

Timeline

PublishedDec 1

Description

A buffer overflow in the getSideInfo2() function of Live555 Streaming Media v2018.09.02 allows attackers to cause a Denial of Service (DoS) via a crafted MP3 stream.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

▶NVDlive555/streaming_media2018-09-02

🔴Vulnerability Details

CVEList

CVE-2025-65404: A buffer overflow in the getSideInfo2() function of Live555 Streaming Media v2018↗2025-12-01

▶

GHSA

GHSA-j37f-vxrh-g34r: A buffer overflow in the getSideInfo2() function of Live555 Streaming Media v2018↗2025-12-01

▶

OSV

CVE-2025-65404: A buffer overflow in the getSideInfo2() function of Live555 Streaming Media v2018↗2025-12-01

▶