CRITICAL🇵🇱 Wersja polska

CVE-2024-25678

CVSS 9.8v3.1pub. 2024-02-09upd. 2025-06-20

In LiteSpeed QUIC (LSQUIC) Library before 4.0.4, DCID validation is mishandled.

🤖 AI Analysis
How it works

The vulnerability results from improper handling of the DCID (Destination Connection ID) field validation in the QUIC protocol, classified as CWE-354 — insufficient data integrity validation. An attacker can send crafted network packets with incorrect or manipulated DCID, which the library processes improperly. Lack of proper verification of this field can lead to unexpected library behavior. The vulnerability is accessible remotely, without user interaction, and without required privileges (vector AV:N/AC:L/PR:N/UI:N).

Impact

A remote, unauthenticated attacker may potentially gain unauthorized access to data, compromise system integrity, or cause system unavailability — according to CVSS assessment indicating high impact on confidentiality, integrity, and availability (C:H/I:H/A:H).

Mitigation & patch

Update the LSQUIC library to version 4.0.4 or later, available at: https://github.com/litespeedtech/lsquic/releases/tag/v4.0.4. The fix was introduced in commit 515f453556c99d27c4dddb5424898dc1a5537708.

Who is affected

LiteSpeed QUIC (LSQUIC) Library in versions prior to 4.0.4

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Litespeedtech Lsquic

    APP
    Litespeedtech
    < 4.0.4
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-30592CRITICAL9.8ten sam produkt

liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles MAX_TABLE_CAPACITY.

CVE-2025-54939MEDIUM5.3ten sam produkt

LiteSpeed QUIC (LSQUIC) Library before 4.3.1 has an lsquic_engine_packet_in memory leak.

CVE-2026-48172CRITICAL10.0⚠ KEVPL ✓ten sam vendor

LiteSpeed cPanel Plugin — privilege escalation (możliwe root) via Redis

CVE-2024-44000CRITICAL9.8PL ✓ten sam vendor

LiteSpeed Cache – nieuwierzytelnione przejęcie konta przez ujawnione dane logowania

CVE-2024-28000CRITICAL9.8PL ✓ten sam vendor

Privilege escalation bez uwierzytelnienia w LiteSpeed Cache dla WordPress