/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-86gp-2jfq-32jc

Published

Last updated

https://images.chainguard.dev/security/CGA-86gp-2jfq-32jc
Package

filebrowser

RepositoryWolfi
Latest Update
Pending upstream fix
Aliases
  • CVE-2025-53893
  • GHSA-7xqm-7738-642x

Severity

6.5

Medium

CVSS V3

References

  • https://nvd.nist.gov/vuln/detail/CVE-2025-53893

Updates

Status

Pending upstream fix

Impact

FileBrowser version 2.38.0 is affected by a denial-of-service (DoS) vulnerability stemming from uncontrolled memory allocation when processing file reads. At this time, no upstream patch or mitigation has been released. We are actively monitoring the upstream repository for remediation and will evaluate patching or mitigation strategies once a fix becomes available.

Status

Under investigation


Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing