CVE-2025-48498

CVSS 7.5 · High EPSS 0.15% · P36 Updated Nov 04, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-48498

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A null pointer dereference vulnerability exists in the Distributed Transaction component of Bloomberg Comdb2 8.1 when processing a number of fields used for coordination. A specially crafted protocol buffer message can lead to a denial of service. An attacker can simply connect to a database instance over TCP and send the crafted message to trigger this vulnerability.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

空指针解引用

Source: NVD (National Vulnerability Database)

Vulnerability Title

Bloomberg Comdb2 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Bloomberg Comdb2是Bloomberg开源的一款分布式关系数据库管理系统。 Bloomberg Comdb2 8.1版本存在代码问题漏洞，该漏洞源于分布式事务组件在处理协调字段时存在空指针取消引用，可能导致拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Bloomberg	Comdb2	8.1	-

II. Public POCs for CVE-2025-48498

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-48498

请登录查看更多情报信息。

Same Patch Batch · Bloomberg · 2025-07-22 · 5 CVEs total

CVE-2025-36512	7.5 HIGH	Bloomberg Comdb2 安全漏洞
CVE-2025-36520	7.5 HIGH	Bloomberg Comdb2 代码问题漏洞
CVE-2025-35966	7.5 HIGH	Bloomberg Comdb2 代码问题漏洞
CVE-2025-46354	7.5 HIGH	Bloomberg Comdb2 安全漏洞

IV. Related Vulnerabilities

Same product: Comdb2

Same vendor: Bloomberg

Same weakness: CWE-476

V. Comments for CVE-2025-48498

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-48498

I. Basic Information for CVE-2025-48498

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-48498

III. Intelligence Information for CVE-2025-48498

Same Patch Batch · Bloomberg · 2025-07-22 · 5 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-48498

Leave a comment