{"vulnerability": "ghsa-xq3w-v528-46rv", "sightings": [{"uuid": "55160325-e27c-4e47-a0b5-b0a683d39a1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/ac258bea45025717f0ed3e9461a069c2", "content": "", "creation_timestamp": "2025-07-16T05:32:18.000000Z"}, {"uuid": "1f8add44-ae58-4383-9cad-02ac943b1030", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/678e0ba18d8f78e6a69974ba13c63b56", "content": "", "creation_timestamp": "2025-07-16T06:05:35.000000Z"}, {"uuid": "bd8b863f-cf64-41f7-9a13-030f9cc5171e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/4f0365a5003239f65288d5f184de3512", "content": "", "creation_timestamp": "2025-07-16T12:02:49.000000Z"}, {"uuid": "98b9127d-b5e1-4710-ab59-9235f3bbdcb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/74e21949896b589baa948e9ed6f5748a", "content": "", "creation_timestamp": "2025-06-17T12:51:43.000000Z"}, {"uuid": "632c438e-9e6b-40e6-8908-5e667b63d07f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/f0ece275d2a5f01cdb6c494e4eda047c", "content": "", "creation_timestamp": "2025-07-16T14:08:37.000000Z"}, {"uuid": "b338085f-e572-4092-bb69-d5470de4bcf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/558d37f41c5ff4ac289f774151dbeb8e", "content": "", "creation_timestamp": "2025-07-16T08:27:57.000000Z"}, {"uuid": "4d60621b-1e96-43d8-9358-5f16b3ea940c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/377e11baa0869e0b381b07a3d7ed6e90", "content": "", "creation_timestamp": "2025-07-16T10:34:44.000000Z"}, {"uuid": "dc6bd03f-27ae-404d-a858-bffb17e535cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/24c020ed9d2c5206c5029cfb25825bf0", "content": "", "creation_timestamp": "2025-07-16T10:38:12.000000Z"}, {"uuid": "8c2a85d1-faed-4cc5-a19f-cec2e03bf794", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/42c52b7475f1deb88e5e54007f9a06a5", "content": "", "creation_timestamp": "2025-07-16T09:05:51.000000Z"}, {"uuid": "713f51ca-388d-42a7-b9bc-7fe0938908f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/2d598c0e56d4c08d8d3ab8b2c3ce83f3", "content": "", "creation_timestamp": "2025-07-16T09:30:30.000000Z"}, {"uuid": "854f568e-1e12-4122-9186-2d6917d4344d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/d143b158efbe93bddedc21cd35d69f96", "content": "", "creation_timestamp": "2025-07-16T05:05:11.000000Z"}, {"uuid": "b666985d-9c0e-4677-af62-70726eb39e89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/f61224522155355958d6a621efd7cfe8", "content": "", "creation_timestamp": "2025-07-16T12:59:51.000000Z"}, {"uuid": "41afa408-e1a6-4882-b4aa-b2849e798c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/03f7f0d5931f6af20b42248cd731633a", "content": "", "creation_timestamp": "2025-07-16T15:24:05.000000Z"}, {"uuid": "a512b2ab-bc03-431f-9984-f8cc72dc230b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/c3d37218b11c97a4e6892cc8227f2a75", "content": "", "creation_timestamp": "2025-07-16T15:25:48.000000Z"}, {"uuid": "d86ee470-82a3-4890-a6a9-b01f5adb6a70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-xq3w-v528-46rv", "type": "seen", "source": "https://gist.github.com/safer-bot/854db19b37d85f8ecc0537be2939d6c9", "content": "", "creation_timestamp": "2025-07-16T22:54:47.000000Z"}, {"uuid": "7a2a3c9b-3555-4036-9c28-ba7e98c36baa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-XQ3W-V528-46RV", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4455", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25193\n\ud83d\udd25 CVSS Score: 5.4 (CVSS_V3)\n\ud83d\udd39 Description: ### Summary\nAn unsafe reading of environment file could potentially cause a denial of service in Netty.\nWhen loaded on an Windows application, Netty attemps to load a file that does not exist. If an attacker creates such a large file, the Netty application crash.\n\n### Details\nA similar issue was previously reported in https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv\nThis issue was fixed, but the fix was incomplete in that null-bytes were not counted against the input limit.\n\n\n### PoC\nThe PoC is the same as for https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv with the detail that the file should only contain null-bytes; 0x00.\nWhen the null-bytes are encountered by the `InputStreamReader`, it will issue replacement characters in its charset decoding, which will fill up the line-buffer in the `BufferedReader.readLine()`, because the replacement character is not a line-break character.\n\n### Impact\nImpact is the same as https://github.com/netty/netty/security/advisories/GHSA-xq3w-v528-46rv\n\ud83d\udccf Published: 2025-02-10T18:14:47Z\n\ud83d\udccf Modified: 2025-02-14T15:02:31Z\n\ud83d\udd17 References:\n1. https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx\n2. https://nvd.nist.gov/vuln/detail/CVE-2025-25193\n3. https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386\n4. https://github.com/netty/netty", "creation_timestamp": "2025-02-14T15:15:16.000000Z"}]}