{"id":"CVE-2025-57275","details":"Storage Performance Development Kit (SPDK) 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK - lib/nvmf.","aliases":["GHSA-5m5w-w2h2-fqgq"],"modified":"2026-03-14T12:45:33.972829Z","published":"2025-10-01T15:15:47.263Z","related":["CGA-jccf-7792-vr4v"],"references":[{"type":"WEB","url":"https://spdk.io/"},{"type":"FIX","url":"https://github.com/spdk/spdk/commit/f786c6d75f5c5162363a621b24f5449c729679c9"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/spdk/spdk","events":[{"introduced":"0"},{"fixed":"f786c6d75f5c5162363a621b24f5449c729679c9"}]}],"versions":["v1.0.0","v1.2.0","v16.06","v16.08","v16.12","v17.03","v17.07","v17.10","v18.01","v18.04","v18.07","v18.10","v19.01","v19.04","v19.07","v19.10-rc1","v20.01-rc1","v20.04-rc1","v20.07-rc1","v20.10-rc1","v21.01-rc1","v21.04-rc1","v21.07-rc1","v21.10-rc1","v22.01-rc1","v22.05-rc1","v22.09-pre","v22.09-rc1","v23.01-pre","v23.01-rc1","v23.05-pre","v23.05-rc1","v23.09-pre","v23.09-rc1","v24.01-pre","v24.01-rc1","v24.05-pre","v24.05-rc1","v24.09-pre","v24.09-rc1","v25.01-pre","v25.01-rc1","v25.05-pre","v25.05-rc1","v25.09-pre","v25.09-rc1","v26.01-pre"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-57275.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H"}]}