Home > Vulnerability Database > CVE-2025-59777

Mend.io Vulnerability Database

CVE-2025-59777

Good to know:

Date: November 9, 2025

NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. The vulnerability was fixed in commit ff13abc on the master branch of the libmicrohttpd Git repository, after the v1.0.2 tag. A specially crafted packet sent by an attacker could cause a denial-of-service (DoS) condition.

Severity Score

7.5

Related Resources (5)

Url: https://www.gnu.org/software/libmicrohttpd/

Url: https://git.gnunet.org/libmicrohttpd.git/commit/?id=ff13abc1c1d7d2b30d69d5c0bd4a237e1801c50b

Url: https://jvn.jp/en/jp/JVN76719218/

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-59777

Url: https://www.mend.io/vulnerability-database/CVE-2025-59777

Severity Score

7.5

Weakness Type (CWE)

NULL Pointer Dereference

CWE-476

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-59777

Good to know:

Date: November 9, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?