CVE-2025-11602

Vulnerability Description

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses.

Related Weaknesses (CWE)

CWE-226

References

https://neo4j.com/security/cve-2025-11602

FAQ

What is CVE-2025-11602?

CVE-2025-11602 is a documented vulnerability. Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no contro...

How severe is CVE-2025-11602?

CVSS scoring is not yet available for CVE-2025-11602. Check NVD for updates.

Is there a patch for CVE-2025-11602?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.