CVE-2025-71264

Description

Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service (client crash).

PUBLISHED Reserved 2026-03-16 | Published 2026-03-16 | Updated 2026-03-16 | Assigner mitre

Problem types

CWE-125 Out-of-bounds Read

Product status

References

github.com/...ommit/ff2a2332cccb267721553f09c0ded4de880622e0

github.com/mumble-voip/mumble/pull/7032

bugs.debian.org/1129178

cve.org (CVE-2025-71264)

nvd.nist.gov (CVE-2025-71264)

Download JSON