CVE-2025-30258
ADVISORY - nistSummary
In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."
EPSS Score: 0.00022 (0.052)
Common Weakness Enumeration (CWE)
ADVISORY - nist
Improper Check for Unusual or Exceptional Conditions
ADVISORY - redhat
Improper Check for Unusual or Exceptional Conditions
NIST
CREATED
UPDATED
ADVISORY IDCVE-2025-30258
EXPLOITABILITY SCORE
1
EXPLOITS FOUND
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
2.7lowAlpine
CREATED
UPDATED
ADVISORY IDCVE-2025-30258
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Debian
CREATED
UPDATED
ADVISORY IDCVE-2025-30258
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
Ubuntu
CREATED
UPDATED
ADVISORY IDCVE-2025-30258
EXPLOITABILITY SCORE
1.0
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
4.7mediumAmazon
CREATED
UPDATED
ADVISORY IDALAS2023-2025-1107
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
CVSS SCORE
N/AlowRed Hat
CREATED
UPDATED
ADVISORY IDCVE-2025-30258
EXPLOITABILITY SCORE
1.0
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CVSS SCORE
2.7lowChainguard
CREATED
UPDATED
ADVISORY ID
CGA-xv4r-f7xm-mhg3
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
minimos
CREATED
UPDATED
ADVISORY ID
MINI-wv49-m2hm-w2vq
EXPLOITABILITY SCORE
-
EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-