{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-44560", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-14T14:06:50.236Z", "dateReserved": "2025-04-22T00:00:00.000Z", "datePublished": "2026-04-10T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-10T14:48:52.868Z"}, "descriptions": [{"lang": "en", "value": "owntone-server 2ca10d9 is vulnerable to Buffer Overflow due to lack of recursive checking."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/owntone/owntone-server/issues/1873"}, {"url": "https://gist.github.com/wenwenyuyu/517851c3fe38c4f97b2d1940597da2d3"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-120", "lang": "en", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-14T14:05:51.664730Z", "id": "CVE-2025-44560", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T14:06:50.236Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-44560", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-14T14:05:51.664730Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-120", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T14:06:44.919Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/owntone/owntone-server/issues/1873"}, {"url": "https://gist.github.com/wenwenyuyu/517851c3fe38c4f97b2d1940597da2d3"}], "descriptions": [{"lang": "en", "value": "owntone-server 2ca10d9 is vulnerable to Buffer Overflow due to lack of recursive checking."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-10T14:48:52.868Z"}}}, "cveMetadata": {"cveId": "CVE-2025-44560", "state": "PUBLISHED", "dateUpdated": "2026-04-14T14:06:50.236Z", "dateReserved": "2025-04-22T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-10T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "owntone-server 2ca10d9 is vulnerable to Buffer Overflow due to lack of recursive checking."}], "id": "CVE-2025-44560", "lastModified": "2026-04-14T15:16:23.843", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-10T15:16:22.743", "references": [{"source": "cve@mitre.org", "url": "https://gist.github.com/wenwenyuyu/517851c3fe38c4f97b2d1940597da2d3"}, {"source": "cve@mitre.org", "url": "https://github.com/owntone/owntone-server/issues/1873"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "2ca10d9"}}], "enrichment": {"confidence": 90.0, "confidence_source": "inferred", "scores": [{"score": 90.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "owntone-server", "vendor": "owntone"}], "analysis": {"en": {"generated_at": "2026-04-14T18:03:20.332999+00:00", "value": {"mitigation_remediation": ["Determine whether the running owntone\u2011server installation is at or older than commit\u202f2ca10d9 by checking the commit hash or version string.", "If a newer version or patch is available that eliminates the buffer overflow, upgrade immediately; otherwise, apply a local code patch by revising the recursive check logic in the vulnerable module.", "Run the server under stricter security controls: restrict network exposure to trusted hosts, place it in a sandbox or container, and monitor for anomalous traffic.", "Enable operating\u2011system memory protection features such as ASLR, stack canaries, and non\u2011executable memory to mitigate the impact if an overflow does occur.", "Maintain regular security updates for the operating system and the owntone\u2011server repository to ensure any future fixes are applied promptly."], "summary": {"action": "Assess", "impact": "Buffer Overflow"}, "threat_synthesis": {"affected_systems": "The issue appears in owntone\u2011server at commit\u202f2ca10d9 and is present in any earlier releases that include the same code path. No other vendors or products are known to be affected, so only installations of this software version are at risk.", "description_and_impact": "The owntone\u2011server software contains a buffer overflow vulnerability caused by insufficient recursive input validation. This flaw allows an attacker to write arbitrary data outside of the intended buffer boundaries, potentially corrupting memory and affecting the stability or security of the process. The weakness is identified as CWE\u2011120, which involves an out\u2011of\u2011bounds write.", "risk_and_exploitability": "The vulnerability scores a CVSS base score of\u202f9.8, indicating a very high severity level. The EPSS score is below\u202f1\u202f%, suggesting that exploitation attempts are currently rare, and it is not listed in CISA's KEV catalog. Based on the description, the likely attack vector is through malformed input supplied to the server, which could be local or remote if the vulnerable functionality is reachable across a network. The potential impact includes program corruption, denial of service, or in the worst case arbitrary code execution if the overflow is leveraged successfully."}}}}, "created": "2026-04-13T12:51:47.264705+00:00", "title": "Buffer Overflow in owntone\u2011Server Due to Missing Recursive Validation", "updated": "2026-04-15T16:00:07.798649+00:00", "vendors": ["owntone", "owntone$PRODUCT$owntone-server"]}