CVE-2025-11579

5.3MEDIUM

github.com/nwaples/rardecode versions <=2.1.1 fail to restrict the dictionary size when reading large RAR dictionary sizes, which allows an attacker to provide a specially crafted RAR file and cause D

Veröffentlicht: 10/10/2025Aktualisiert: 12/2/2025
Auf NVD ansehenAuf MITRE ansehen

Beschreibung

github.com/nwaples/rardecode versions <=2.1.1 fail to restrict the dictionary size when reading large RAR dictionary sizes, which allows an attacker to provide a specially crafted RAR file and cause Denial of Service via an Out Of Memory Crash.

KI-AnalyseKI-gestützt

Referenzen