{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-6069", "assignerOrgId": "28c92f92-d60d-412d-b760-e73465c3df22", "state": "PUBLISHED", "assignerShortName": "PSF", "dateReserved": "2025-06-13T14:05:15.473Z", "datePublished": "2025-06-17T13:39:46.058Z", "dateUpdated": "2026-04-21T20:17:13.876Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": ["html.parser"], "product": "CPython", "repo": "https://github.com/python/cpython", "vendor": "Python Software Foundation", "versions": [{"version": "0", "lessThan": "3.10.19", "status": "affected", "versionType": "python"}, {"version": "3.11.0", "lessThan": "3.11.14", "status": "affected", "versionType": "python"}, {"version": "3.12.0", "lessThan": "3.12.12", "status": "affected", "versionType": "python"}, {"version": "3.13.0", "lessThan": "3.13.6", "status": "affected", "versionType": "python"}, {"version": "3.14.0a1", "lessThan": "3.14.0b3", "status": "affected", "versionType": "python"}]}], "credits": [{"lang": "en", "type": "remediation developer", "value": "Serhiy Storchaka"}, {"lang": "en", "type": "reporter", "value": "Jake Howard"}, {"lang": "en", "type": "finder", "value": "sw0rd1ight"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service."}], "value": "The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-1333", "description": "CWE-1333 Inefficient Regular Expression Complexity", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "28c92f92-d60d-412d-b760-e73465c3df22", "shortName": "PSF", "dateUpdated": "2026-04-21T20:17:13.876Z"}, "references": [{"tags": ["issue-tracking"], "url": "https://github.com/python/cpython/issues/135462"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/pull/135464"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b"}, {"tags": ["vendor-advisory"], "url": "https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc"}, {"tags": ["patch"], "url": "https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15"}], "source": {"discovery": "UNKNOWN"}, "title": "HTMLParser quadratic complexity when processing malformed inputs", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-06-17T13:58:28.646020Z", "id": "CVE-2025-6069", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-17T13:58:41.637Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-6069", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-06-17T13:58:28.646020Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-17T13:58:32.039Z"}}], "cna": {"title": "HTMLParser quadratic complexity when processing malformed inputs", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "remediation developer", "value": "Serhiy Storchaka"}, {"lang": "en", "type": "reporter", "value": "Jake Howard"}, {"lang": "en", "type": "finder", "value": "sw0rd1ight"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"repo": "https://github.com/python/cpython", "vendor": "Python Software Foundation", "modules": ["html.parser"], "product": "CPython", "versions": [{"status": "affected", "version": "0", "lessThan": "3.10.19", "versionType": "python"}, {"status": "affected", "version": "3.11.0", "lessThan": "3.11.14", "versionType": "python"}, {"status": "affected", "version": "3.12.0", "lessThan": "3.12.12", "versionType": "python"}, {"status": "affected", "version": "3.13.0", "lessThan": "3.13.6", "versionType": "python"}, {"status": "affected", "version": "3.14.0a1", "lessThan": "3.14.0b3", "versionType": "python"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://github.com/python/cpython/issues/135462", "tags": ["issue-tracking"]}, {"url": "https://github.com/python/cpython/pull/135464", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b", "tags": ["patch"]}, {"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/", "tags": ["vendor-advisory"]}, {"url": "https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc", "tags": ["patch"]}, {"url": "https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15", "tags": ["patch"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service.", "supportingMedia": [{"type": "text/html", "value": "The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1333", "description": "CWE-1333 Inefficient Regular Expression Complexity"}]}], "providerMetadata": {"orgId": "28c92f92-d60d-412d-b760-e73465c3df22", "shortName": "PSF", "dateUpdated": "2026-04-21T20:17:13.876Z"}}}, "cveMetadata": {"cveId": "CVE-2025-6069", "state": "PUBLISHED", "dateUpdated": "2026-04-21T20:17:13.876Z", "dateReserved": "2025-06-13T14:05:15.473Z", "assignerOrgId": "28c92f92-d60d-412d-b760-e73465c3df22", "datePublished": "2025-06-17T13:39:46.058Z", "assignerShortName": "PSF"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service."}, {"lang": "es", "value": "La clase html.parser.HTMLParser ten\u00eda una complejidad cuadr\u00e1tica en el peor de los casos al procesar ciertas entradas mal formadas que pod\u00edan llevar a una denegaci\u00f3n de servicio amplificada."}], "id": "CVE-2025-6069", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "cna@python.org", "type": "Secondary"}]}, "published": "2025-06-17T14:15:33.677", "references": [{"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/issues/135462"}, {"source": "cna@python.org", "url": "https://github.com/python/cpython/pull/135464"}, {"source": "cna@python.org", "url": "https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/"}], "sourceIdentifier": "cna@python.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1333"}], "source": "cna@python.org", "type": "Secondary"}]}

{"bugzilla": {"description": "cpython: Python HTMLParser quadratic complexity", "id": "2373234", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373234"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "status": "draft"}, "cwe": "CWE-1333", "details": ["The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malformed inputs potentially leading to amplified denial-of-service.", "A denial-of-service (DoS) vulnerability has been discovered in Python's html.parser.HTMLParser class. When processing specially malformed HTML input, the parsing runtime can become quadratic with respect to the input size. This significantly increased processing time can lead to excessive resource consumption, ultimately causing a denial-of-service condition in applications that rely on this parser."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2025-6069", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Fix deferred", "package_name": "python3.12", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Fix deferred", "package_name": "python", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Fix deferred", "package_name": "python", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Fix deferred", "package_name": "python3", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "python3", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "python3.11", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "python3.12", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "python36:3.6/python36", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "python39:3.9/python39", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "python39-devel:3.9/python39", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "python3.11", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "python3.12", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Fix deferred", "package_name": "python3.9", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-amd-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-aws-nvidia-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-azure-amd-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-azure-nvidia-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-gcp-nvidia-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-intel-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/bootc-nvidia-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/granite-3.1-8b-lab-v2.1", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/granite-3.1-8b-starter-v2.1", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/instructlab-amd-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/instructlab-nvidia-rhel9", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/modelcar-granite-3-1-8b-lab-v2-1", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}, {"cpe": "cpe:/a:redhat:enterprise_linux_ai:1", "fix_state": "Fix deferred", "package_name": "rhelai1/modelcar-granite-3-1-8b-starter-v2-1", "product_name": "Red Hat Enterprise Linux AI (RHEL AI)"}], "public_date": "2025-06-17T13:39:46Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-6069\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-6069\nhttps://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949\nhttps://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41\nhttps://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b\nhttps://github.com/python/cpython/issues/135462\nhttps://github.com/python/cpython/pull/135464"], "threat_severity": "Moderate"}

{"analysis": {"en": {"generated_at": "2026-04-22T11:28:19.922852+00:00", "value": {"mitigation_remediation": ["Update to a Python release that contains the HTMLParser fix", "If an update cannot be applied immediately, validate or sanitize incoming HTML data before invoking HTMLParser", "Throttle or rate\u2011limit requests that trigger HTML parsing to mitigate potential denial\u2011of\u2011service impact"], "summary": {"action": "Assess Impact", "impact": "Amplified Denial of Service"}, "threat_synthesis": {"affected_systems": "The affected product is CPython from the Python Software Foundation. No specific version ranges are listed in the CNA data, so the impact potentially applies to all releases that have not incorporated the fixing commits referenced in the advisory.", "description_and_impact": "The vulnerability resides in the html.parser.HTMLParser class, which exhibits worse\u2011case quadratic complexity when handling certain malformed inputs. Crafted data can cause the parser to consume excessive time and memory, leading to a denial\u2011of\u2011service condition. This weakness is classified as CWE-1333 and does not directly enable code execution or data exfiltration.", "risk_and_exploitability": "The CVSS score of 4.3 indicates a medium impact with limited exploitation scope. The EPSS score of less than 1% suggests a very low likelihood of current exploitation. The CVE is not listed in the CISA KEV catalog, further indicating a low urgency. Based on the description, the attack likely requires an attacker to supply crafted HTML input to a CPython process that performs parsing \u2013 a scenario that could arise in web services or content\u2011handling applications. No privilege escalation or remote code execution is enabled by this flaw."}}}}, "created": "2025-06-20T13:55:53.870049+00:00", "updated": "2026-04-22T11:30:15.377044+00:00", "vendors": ["python", "python$PRODUCT$cpython"]}