CVE-2025-71264

LOW

Mumble < 1.6.870 - Denial of Service via Out-of-bounds Array Access

Title source: llm
STIX 2.1

Description

Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service (client crash).

References (3)

Core 3

Scores

CVSS v3 3.7
EPSS 0.0028
EPSS Percentile 19.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (2)
Mumble/Mumble < 1.6.870
mumble/mumble < 1.6.870
Published Mar 16, 2026
Tracked Since Mar 16, 2026