CVE-2020-25340

MEDIUM

Nfstream - Memory Leak

Title source: rule

Description

An issue was discovered in NFStream 5.2.0. Because some allocated modules are not correctly freed, if the nfstream object is directly destroyed without being used after it is created, it will cause a memory leak that may result in a local denial of service (DoS).

References (1)

[Exploit, Third Party Advisory] https://github.com/ntop/nDPI/issues/994

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 14.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (2)

nfstream/nfstream

pypi/nfstream PyPI

Timeline

Published Feb 16, 2021

Tracked Since Feb 18, 2026