216.73.216.170

CVE-2025-35435

· Published 17/09/2025 17:15 · Modified 18/09/2025 13:43

Labels: CVE-2025-35435 2025-09-179119a7d8-5eab-497f-8521-727c672e3725CVE-2025-35435CWE-369

Essential information

Published
17/09/2025 17:15
Modified
18/09/2025 13:43
Author
Creator
CVSS
5.3 MEDIUM (v3) 5.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

CISA Thorium accepts a stream split size of zero then divides by this value. A remote, authenticated attacker could cause the service to crash. Fixed in commit 89101a6.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
9119a7d8-5eab-497f-8521-727c672e3725
NVD
View on NVD

Affected products (CPE)

ProductCPE
cisa / thorium cpe:2.3:a:cisa:thorium:*:*:*:*:*:*:*:*

References