VDB
CVE-2025-54470
CVE-2025-54470
PUBLISHED
CVSS 8.600000381469727 HIGH
NeuVector telemetry sender is vulnerable to MITM and DoS
EPSS 0.07% · 22.0th percentile
Risk Scores
CVSS 3.1
8.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
EPSS Score
0.07%
22.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | neuvector/neuvector | 5.3.0, 5.4.0, 0.0.0-20230727023453-1c4957d53911 |
| SUSE | neuvector | 5.3.0, 5.4.0, 0.0.0-20230727023453-1c4957d53911 |
Exploit Intelligence
- CIRCL seen: CVE-2025-54470 (circl-sighting)
- CIRCL seen: CVE-2025-54470 (circl-sighting)
- CIRCL seen: CVE-2025-54470 (circl-sighting)
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-54470 (circl)
- https://github.com/neuvector/neuvector/security/advisories/GHSA-qqj3-g7mx-5p4w (circl)
- go_dos.json (github-poc)
- go_dos.json (github-poc)
- go_dos.json (github-poc)
- go_dos.json (github-poc)
- go_dos.json (github-poc)
…and 2 more exploits
Timeline
- Oct 21, 2025 CVE Published
- Oct 30, 2025 EPSS Score
- Oct 30, 2025 Coalition ESS Score
- Oct 30, 2025 Coalition ESS Score
- Oct 30, 2025 PoC Published
- Oct 30, 2025 PoC Published
- Oct 30, 2025 PoC Published
- Oct 31, 2025 Coalition ESS Score
- Nov 5, 2025 EPSS Score
- Nov 5, 2025 CVE Updated
- Nov 7, 2025 Coalition ESS Score
- Nov 10, 2025 EPSS Score
References
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-54470 url
- https://github.com/neuvector/neuvector/security/advisories/GHSA-qqj3-g7mx-5p4w url
- https://nvd.nist.gov/vuln/detail/CVE-2025-54470 advisory
- https://github.com/neuvector/neuvector/commit/06424701e69bf1eb76ff90180d78853fded93021 url
- https://github.com/neuvector/neuvector/commit/415737cbec581a5dc5f204fac1c78b7f29ad7dc2 url
- https://github.com/neuvector/neuvector package