CVE-2025-71031

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

04/02/2026

Last modified:

04/02/2026

Description

Water-Melon Melon commit 9df9292 and below is vulnerable to Denial of Service. The HTTP component doesn&#39;t have any maximum length. As a result, an excessive request header could cause a denial of service by consuming RAM memory.

Impact

References to Advisories, Solutions, and Tools

https://suphawith-phusanbai.gitbook.io/book-of-suphawith/my-exploits/cve-2025-71031-denial-of-service-in-melon-c-library
https://suphawith-phusanbai.gitbook.io/book-of-suphawith/my-exploits/denial-of-service-in-melon-c-library