CVE-2025-4366 — Vulnetix

CVE-2025-4366 PUBLISHED CVSS 7.400000095367432 HIGH

A request smuggling vulnerability identified within Pingora’s proxying framework, pingora-proxy, allows malicious HTTP requests to be injected via manipulated request bodies on cache HITs, leading to unauthorized request execution and potential cache poisoning. Fixed in: https://github.com/cloudflare/pingora/commit/fda3317ec822678564d641e7cf1c9b77ee3759ff https://github.com/cloudflare/pingora/commit/fda3317ec822678564d641e7cf1c9b77ee3759ff Impact: The issue could lead to request smuggling in cases where Pingora’s proxying framework, pingora-proxy, is used for caching allowing an attacker to manipulate headers and URLs in subsequent requests made on the same HTTP/1.1 connection.

EPSS 0.61% · 70.1th percentile

Risk Scores

CVSS 4.0

7.400000095367432

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:L/SI:L/SA:N

EPSS Score

0.61%

70.1th percentile

Affected Products

Vendor	Product	Versions
cloudflare	pingora	0
		0
crates.io	pingora-core	0

Exploit Intelligence

CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)
CIRCL seen: CVE-2025-4366 (circl-sighting)

…and 3 more exploits

Timeline

May 22, 2025 CVE Published
May 22, 2025 PoC Published
May 22, 2025 PoC Published
May 23, 2025 EPSS Score
May 23, 2025 PoC Published
May 23, 2025 PoC Published
May 23, 2025 PoC Published
May 23, 2025 PoC Published
May 23, 2025 PoC Published
May 26, 2025 PoC Published
May 26, 2025 PoC Published
May 27, 2025 PoC Published

References

Open in Interactive Console →