Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Owntone | Owntone-server | 90% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 15 Apr 2026 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Buffer Overflow in owntone‑Server Due to Missing Recursive Validation |
Tue, 14 Apr 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Owntone‑Server Buffer Overflow Due to Missing Recursive Checking | |
| Weaknesses | CWE-119 CWE-787 |
Tue, 14 Apr 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-120 | |
| Metrics |
cvssV3_1
|
Mon, 13 Apr 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Owntone‑Server Buffer Overflow Due to Missing Recursive Checking | |
| Weaknesses | CWE-119 CWE-787 |
Mon, 13 Apr 2026 13:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Owntone
Owntone owntone-server |
|
| Vendors & Products |
Owntone
Owntone owntone-server |
Fri, 10 Apr 2026 15:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | owntone-server 2ca10d9 is vulnerable to Buffer Overflow due to lack of recursive checking. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-04-14T14:06:50.236Z
Reserved: 2025-04-22T00:00:00.000Z
Link: CVE-2025-44560
Vulnrichment
Updated: 2026-04-14T14:06:44.919Z
NVD
Status : Deferred
Published: 2026-04-10T15:16:22.743
Modified: 2026-04-27T19:18:46.690
Link: CVE-2025-44560
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-15T16:00:07Z