CVE-2025-30258
CVE Information
CVE ID
CVE-2025-30258
Severity
LOW
CVSS 2.7
Publish Date
2025-03-19
Description
In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other signing keys, aka a "verification DoS."
Collection Date
2026-02-05
Impact Summary
Affected Hosts
3
Related Incidents
0
Related Alerts
0
Affected Hosts (3)
| Hostname | OS Type | Severity | Total CVEs |
|---|---|---|---|
| in-bridge-40 | LINUX | CRITICAL | 396 |
| inbridge-ubt-24 | LINUX | CRITICAL | 2336 |
| inbridge-42 | LINUX | CRITICAL | 148 |