CVE Catalog

CVE-2025-49178

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.20%

10th percentile - higher than 10% of all known CVEs

Summary

A flaw was found in the X server's request handling. Non-zero 'bytes to ignore' in a client's request can cause the server to skip processing another client's request, potentially leading to a denial of service.

Risk Assessment

An attacker can exploit this vulnerability to disrupt the X server, preventing other clients (e.g., graphical applications) from functioning correctly, resulting in user downtime.

Recommendation

Immediately update the X server to the latest patched version and monitor security advisories from your operating system distribution.

Original NVD description (English source)

A flaw was found in the X server's request handling. Non-zero 'bytes to ignore' in a client's request can cause the server to skip processing another client's request, potentially leading to a denial of service.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS