Denial of Service Risk in TinyCBOR Library by Intel
CVE-2025-20025

4.1MEDIUM

Key Information:

Vendor

Intel
Status
Tinycbor Libraries Maintained By Intel(r)
Vendor
CVE Published:
12 August 2025

What is CVE-2025-20025?

The TinyCBOR library maintained by Intel is vulnerable to uncontrolled recursion, which can be exploited by authenticated users to trigger a denial of service. This vulnerability affects all versions prior to 0.6.1, allowing potential disruptions through local access. Proper precautions should be taken to mitigate the risks associated with this oversight.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

TinyCBOR libraries maintained by Intel(R) before version 0.6.1

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:
4.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.