CVE-2025-48075 — Vulnetix

CVE-2025-48075 PUBLISHED CVSS 7.699999809265137 HIGH

Fiber panics when fiber.Ctx.BodyParser parses invalid range index

EPSS 0.47% · 65.1th percentile

Risk Scores

CVSS 4.0

7.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P

EPSS Score

0.47%

65.1th percentile

Affected Products

Vendor	Product	Versions
gofiber	fiber	>= 2.52.6, < 2.52.7, 2.0.0
github.com	gofiber/fiber/v2	2.52.6

Exploit Intelligence

CIRCL seen: CVE-2025-48075 (circl-sighting)
https://github.com/gofiber/fiber/commit/e115c08b8f059a4a031b492aa9eef0712411853d (circl)
https://github.com/gofiber/fiber/security/advisories/GHSA-hg3g-gphw-5hhm (cve.org)

Timeline

Jan 21, 1970 Security Advisory
May 22, 2025 CVE Published
May 22, 2025 PoC Published
May 23, 2025 EPSS Score
Jun 3, 2025 EPSS Score
Jun 6, 2025 Coalition ESS Score
Jun 14, 2025 EPSS Score
Jun 25, 2025 EPSS Score
Jul 6, 2025 EPSS Score
Jul 18, 2025 EPSS Score
Jul 29, 2025 EPSS Score
Aug 6, 2025 Coalition ESS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›