VDB

CVE-2026-25122

CVE-2026-25122 PUBLISHED CVSS 5.5 MEDIUM

apko affected by unbounded resource consumption in expandapk.Split on attacker-controlled .apk streams

EPSS 0.02% · 4.8th percentile

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.02%
4.8th percentile

Affected Products

VendorProductVersions
chainguardapko0.14.8, 0.14.8
chainguard-devapko>= 0.14.8, < 1.1.0, *
chainguard.devapko0.14.8, 0.14.8

Timeline

  • Feb 3, 2026 CVE Published
  • Feb 4, 2026 CVE Updated
  • Feb 5, 2026 EPSS Score
  • Feb 7, 2026 EPSS Score
  • Feb 9, 2026 EPSS Score
  • Feb 12, 2026 EPSS Score
  • Feb 14, 2026 EPSS Score
  • Feb 16, 2026 EPSS Score
  • Feb 18, 2026 EPSS Score
  • Feb 20, 2026 EPSS Score
  • Feb 23, 2026 EPSS Score
  • Feb 25, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›