CVE-2025-54350

Name

CVE-2025-54350

Description

In iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt.

NVD Severity

low

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

Exploits

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
cve@mitre.org	https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a
cve@mitre.org	https://github.com/esnet/iperf/releases/tag/3.19.1
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/08/msg00020.html

CPE URI	Source package	Min version	Max version
	iperf3	>= 0	< 3.19.1

Source package	Branch	Version	Maintainer	Status
iperf3	edge-main	3.19.1-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
iperf3	edge-main	3.19-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
iperf3	edge-main	3.18-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
iperf3	edge-main	3.17.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
iperf3	3.22-main	3.19.1-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
iperf3	3.22-main	3.19-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
iperf3	3.21-main	3.17.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
iperf3	3.20-main	3.17.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
iperf3	3.19-main	3.16-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable