What is CVE-2025-32439?

CVE-2025-32439 is a medium-severity vulnerability in Roderickvd Pleezer, classified under CWE-460. CVSS score: 6.5/10. Published 2025-04-15.

How severe is CVE-2025-32439?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Roderickvd Pleezer

CVE-2025-32439

pleezer is a headless Deezer Connect player. Hook scripts in pleezer can be triggered by various events like track changes and playback state changes. In versions before 0.16.0, these scripts were spawned without proper process cleanup, le…

EPSS: 0.002 (40.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Roderickvd Pleezer — versions < 0.16.0

Weakness classification (CWE)

CWE-460

References

https://github.com/roderickvd/pleezer/security/advisories/GHSA-472w-7w45-g3w5 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2025-32439?: CVE-2025-32439 is a medium-severity vulnerability in Roderickvd Pleezer, classified under CWE-460. CVSS score: 6.5/10. Published 2025-04-15.
How severe is CVE-2025-32439?: Medium severity. CVSS v3 base score is 6.5 out of 10.