CVE-2025-54351: Buffer Overflow

Q: What is the severity of CVE-2025-54351?

CVE-2025-54351 is classified as a high severity vulnerability due to the existence of a buffer overflow in iperf.

Q: How do I fix CVE-2025-54351?

To resolve CVE-2025-54351, upgrade iperf to version 3.19.1 or later.

Q: What impact can CVE-2025-54351 have on my system?

CVE-2025-54351 can potentially allow an attacker to execute arbitrary code or crash the iperf application.

Q: Which versions of iperf are affected by CVE-2025-54351?

CVE-2025-54351 affects iperf versions prior to 3.19.1.

Q: Is CVE-2025-54351 related to network security?

Yes, CVE-2025-54351 is a network security vulnerability that arises from improper handling of data in iperf related to message truncation.

Published Aug 3, 2025

Updated

In iperf before 3.19.1, net.c has a buffer overflow when --skip-rx-copy is used (for MSGTRUNC in recv).

Affected Software

2 affected components

iperf iperf<3.19.1

es iperf3=3.19

Remediation

Patch Available

https://github.com/esnet/iperf/commit/969b7f70c447513e92c9798f22e82b40ebc53bf0

Event History

Aug 3, 2025

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

DescriptionSeverityWeakness

Data Sourced

via NVD·02:15 AM

RemedyDescriptionSeverityWeaknessAffected Software

Frequently Asked Questions

What is the severity of CVE-2025-54351?

CVE-2025-54351 is classified as a high severity vulnerability due to the existence of a buffer overflow in iperf.

How do I fix CVE-2025-54351?

To resolve CVE-2025-54351, upgrade iperf to version 3.19.1 or later.

What impact can CVE-2025-54351 have on my system?