CVE-2025-30160 — HIGH (7.5)

Q: How severe is CVE-2025-30160?

CVE-2025-30160 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-30160?

Check the references section above for vendor advisories and patch information. Affected products include: Redlib Redlib.

Vulnerability Description

Redlib is an alternative private front-end to Reddit. A vulnerability has been identified in Redlib where an attacker can cause a denial-of-service (DOS) condition by submitting a specially crafted base2048-encoded DEFLATE decompression bomb to the restore_preferences form. This leads to excessive memory consumption and potential system instability, which can be exploited to disrupt Redlib instances. This vulnerability is fixed in 0.36.0.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Redlib	Redlib	< 0.36.0

Related Weaknesses (CWE)

CWE-502 CWE-400

References

FAQ

What is CVE-2025-30160?

CVE-2025-30160 is a vulnerability with a CVSS score of 7.5 (HIGH). Redlib is an alternative private front-end to Reddit. A vulnerability has been identified in Redlib where an attacker can cause a denial-of-service (DOS) condition by submitting a specially crafted ba...

How severe is CVE-2025-30160?

CVE-2025-30160 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-30160?

Check the references section above for vendor advisories and patch information. Affected products include: Redlib Redlib.