CVE-2025-6547

Published Jun 23, 2025

Last updated 25 days ago

CVSS critical 9.1

Overview

Description: Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation.This issue affects pbkdf2: <=3.1.2.
Source: 7ffcee3d-2c14-4c3e-b844-86c6a321a158
NVD status: Awaiting Analysis

Risk scores

CVSS 4.0

Type: Secondary
Base score: 9.1
Impact score: -
Exploitability score: -
Vector string: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity: CRITICAL

Weaknesses

7ffcee3d-2c14-4c3e-b844-86c6a321a158: CWE-20

Hype score: Not currently trending

[CVE-2025-6547: CRITICAL] Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation.This issue affects pbkdf2: <=3.1.2.#cve,CVE-2025-6547,#cybersecurity https://t.co/TlV1n1GVmm https://t.co/Rt2AqSsYdM
@CveFindCom
23 Jun 2025
80 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References

Sources include official advisories and independent security research.