CVE-2025-71251
Published: 06 May 2026
Description
In IMS, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
Security SummaryAI
CVE-2025-71251 is a vulnerability in IMS due to improper input validation, which can result in a system crash. This issue affects IMS components, as documented in a Unisoc product security bulletin. The vulnerability has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high severity primarily from its availability impact.
The vulnerability enables remote denial-of-service attacks with no additional execution privileges required. Any unauthenticated attacker with network access can exploit it at low complexity without user interaction, causing a system crash that disrupts service availability but does not compromise confidentiality or integrity.
Mitigation details are provided in the Unisoc product security bulletin at https://www.unisoc.com/en/support/product-security-bulletin/2051836844671422466. Security practitioners should consult this advisory for patching instructions and affected product versions.
Details
- CWE(s)