CVE-2025-67433

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

12/02/2026

Last modified:

13/02/2026

Description

A heap buffer overflow in the processRequest function of Open TFTP Server MultiThreaded v1.7 allows attackers to cause a Denial of Service (DoS) via a crafted DATA packet.

Impact

References to Advisories, Solutions, and Tools

https://gist.github.com/Hyobin/f1b7d48d29e60a378bb9c88ba8b8080a
https://gist.github.com/transparencybeam/f1b7d48d29e60a378bb9c88ba8b8080a
https://sourceforge.net/projects/tftp-server/files/tftp%20server%20multithreaded/