Denial of Service Vulnerability in Bloomberg Comdb2 8.1
CVE-2025-46354

7.5HIGH

Key Information:

Vendor: Bloomberg
Status: Comdb2
Vendor: CVE Published:; 22 July 2025

What is CVE-2025-46354?

A denial of service vulnerability has been identified within the Distributed Transaction Commit/Abort Operation functionality of Bloomberg Comdb2 8.1. This flaw allows an attacker to disrupt services by sending a specifically crafted network packet, leading to service interruptions. The exploitation of this vulnerability could severely impact operations relying on the affected product, making network security measures vital for safeguarding against potential attacks.

Affected Version(s)

Comdb2 8.1

References

https://talosintelligence.com/vulnerability_reports/TALOS...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 22, 2025
Vulnerability Reserved
May 22, 2025

Credit

Discovered by a member of Cisco Talos.