{"id":"CVE-2025-54350","details":"In iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion failure and application exit upon a malformed authentication attempt.","modified":"2026-04-16T04:35:55.769046236Z","published":"2025-08-03T02:15:37.193Z","related":["SUSE-SU-2025:02749-1","openSUSE-SU-2025:15414-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/08/msg00020.html"},{"type":"ADVISORY","url":"https://github.com/esnet/iperf/releases/tag/3.19.1"},{"type":"FIX","url":"https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/esnet/iperf","events":[{"introduced":"88d907f7fb58bfab5d086c5da60c922e1c582c92"},{"fixed":"0fa686ef204229a02dcc21a48823ebd47e60e9a2"},{"fixed":"4eab661da0bbaac04493fa40164e928c6df7934a"}],"database_specific":{"versions":[{"introduced":"3.2"},{"fixed":"3.19.1"}]}}],"versions":["3.10","3.10.1","3.11","3.12","3.13","3.14","3.15","3.16","3.16-beta1","3.17.1","3.18","3.19","3.2","3.3","3.4","3.5","3.6","3.7","3.8","3.8.1","3.9"],"database_specific":{"vanir_signatures":[{"deprecated":false,"id":"CVE-2025-54350-39bc59bf","signature_version":"v1","source":"https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a","target":{"file":"src/iperf_auth.c"},"digest":{"line_hashes":["323096590500231601565781062841475133869","177190648813484510424719151767497913616","236336483969142201306503303143061902560","119852746743027496237459352922656957048","95923132473095433223218853063124587294","145625258585930105510421606521161332427","135210553016364068494788957562994075707"],"threshold":0.9},"signature_type":"Line"},{"deprecated":false,"id":"CVE-2025-54350-7db5a4db","signature_version":"v1","source":"https://github.com/esnet/iperf/commit/4eab661da0bbaac04493fa40164e928c6df7934a","target":{"function":"Base64Decode","file":"src/iperf_auth.c"},"digest":{"function_hash":"42464091545044548035043586930226758366","length":489},"signature_type":"Function"}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-54350.json","vanir_signatures_modified":"2026-04-12T17:14:03Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}]}