CVE-2025-59348 | Dragonfly up to 2.0.x processPieceFromSource usedTraffic uninitialized variable (GHSA-2qgr-gfvj-qpcr)

A vulnerability marked as problematic has been reported in Dragonfly up to 2.0.x. Affected is the function processPieceFromSource. Performing manipulation of the argument usedTraffic results in use of uninitialized variable.

This vulnerability is identified as CVE-2025-59348. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More