CVE-2025-30334

In OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015, traffic sent over wg(4) could result in kernel crash.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://ftp.openbsd.org/pub/OpenBSD/patches/7.5/common/015_wg.patch.sig	Patch
https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/006_wg.patch.sig	Patch
https://github.com/openbsd/src/commit/c06199859734d958552a581d72b4c0f910e68d7c	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:openbsd:openbsd::::::::
	cpe:2.3:o:openbsd:openbsd:7.5:-::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_001::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_002::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_003::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_004::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_005::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_006::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_007::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_008::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_009::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_010::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_011::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_012::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_013::::::
	cpe:2.3:o:openbsd:openbsd:7.5:errata_014::::::
	cpe:2.3:o:openbsd:openbsd:7.6:-::::::
	cpe:2.3:o:openbsd:openbsd:7.6:errata_001::::::
	cpe:2.3:o:openbsd:openbsd:7.6:errata_002::::::
	cpe:2.3:o:openbsd:openbsd:7.6:errata_003::::::
	cpe:2.3:o:openbsd:openbsd:7.6:errata_004::::::
	cpe:2.3:o:openbsd:openbsd:7.6:errata_005::::::

History

05 Sep 2025, 17:14

Type	Values Removed	Values Added
CPE		cpe:2.3:o:openbsd:openbsd:7.5:errata_002:::::: cpe:2.3:o:openbsd:openbsd:7.6:errata_002:::::: cpe:2.3:o:openbsd:openbsd:7.6:errata_003:::::: cpe:2.3:o:openbsd:openbsd:7.6:-:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_011:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_003:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_012:::::: cpe:2.3:o:openbsd:openbsd:7.6:errata_004:::::: cpe:2.3:o:openbsd:openbsd:7.6:errata_005:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_001:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_004:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_005:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_008:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_010:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_007:::::: cpe:2.3:o:openbsd:openbsd:7.6:errata_001:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_006:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_009:::::: cpe:2.3:o:openbsd:openbsd:::::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_013:::::: cpe:2.3:o:openbsd:openbsd:7.5:errata_014:::::: cpe:2.3:o:openbsd:openbsd:7.5:-::::::
First Time		Openbsd openbsd Openbsd
Summary		(es) En OpenBSD 7.6 antes de la errata 006 y OpenBSD 7.5 antes de la errata 015, el tráfico enviado a través de wg(4) podía provocar un bloqueo del núcleo.
References	~~() https://ftp.openbsd.org/pub/OpenBSD/patches/7.5/common/015_wg.patch.sig -~~	() https://ftp.openbsd.org/pub/OpenBSD/patches/7.5/common/015_wg.patch.sig - Patch
References	~~() https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/006_wg.patch.sig -~~	() https://ftp.openbsd.org/pub/OpenBSD/patches/7.6/common/006_wg.patch.sig - Patch
References	~~() https://github.com/openbsd/src/commit/c06199859734d958552a581d72b4c0f910e68d7c -~~	() https://github.com/openbsd/src/commit/c06199859734d958552a581d72b4c0f910e68d7c - Patch

20 Mar 2025, 22:15

Type	Values Removed	Values Added
References		() https://github.com/openbsd/src/commit/c06199859734d958552a581d72b4c0f910e68d7c -

20 Mar 2025, 21:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-20 21:15

Updated : 2025-09-05 17:14

NVD link : CVE-2025-30334

Mitre link : CVE-2025-30334

CVE.ORG link : CVE-2025-30334

JSON object : View

Products Affected

openbsd

openbsd

CWE

CWE-131

Incorrect Calculation of Buffer Size

6.5 /10