Improper Input Validation in Mozilla neqo Affects Multiple Versions
CVE-2025-6703

2.3LOW

Key Information:

Vendor: Mozilla
Status: Neqo
Vendor: CVE Published:; 26 June 2025

What is CVE-2025-6703?

An improper input validation vulnerability in Mozilla neqo can lead to unhandled exceptions causing application crashes. This issue, which impacts multiple versions of neqo from 0.4.24 to 0.13.2, needs to be addressed promptly to avoid potential service disruption. Users are advised to review their systems and apply updates where necessary to mitigate risks associated with this vulnerability.

Affected Version(s)

neqo 0.4.24 <= 0.13.2

References

https://github.com/mozilla/neqo/security/advisories/GHSA-...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2025
Vulnerability Reserved
Jun 26, 2025