MEDIUM

CVE-2025-68160

Heap out-of-bounds write in BIO_f_linebuffer on short writes

CVSS v3

4.7

MEDIUM

EPSS Score

0.0%

exploit probability

CISA KEV

No

known exploited

Exploitation

none

SSVC status

Description

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading to Denial of Service for an application. The line-buffering BIO filter (BIO_f_linebuffer) is not used by default in TLS/SSL data paths. In OpenSSL command-line applications, it is typically only pushed

Technical details

CVSS v3 Vector
3.1
Published
1/27/2026
Last Modified
2/2/2026

Frequently asked questions

What is CVE-2025-68160?

Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typically results in a crash, leading to Denial of Service for an application. The line-buffering BIO filter (BIO_f_linebuffer) is not used by default in TLS/SSL data paths. In OpenSSL command-line applications, it is typically only pushed

Is CVE-2025-68160 actively exploited?

Active exploitation of CVE-2025-68160 has not been confirmed. The EPSS score is 0.0%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2025-68160?

CVE-2025-68160 has a CVSS v3 base score of 4.7 (MEDIUM severity), with vector string 3.1.

Is CVE-2025-68160 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.