How severe is CVE-2025-11602?

The severity of CVE-2025-11602 has not been assessed with CVSS v3.

CVE-2025-11602

NONE

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no contro

Published: 10/31/2025Updated: 11/4/2025

Description

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses.

AI AnalysisPowered by AI

References

https://neo4j.com/security/cve-2025-11602