CVE-2025-53114
CometD has acknowledgement extension out of memory
CVSS Score
7.5
EPSS Score
0.0%
EPSS Percentile
0th
CometD is a scalable comet implementation for web messaging. In versions 5.0.0 through 5.0.22, 6.0.0 through 6.0.18, 7.0.0 through 7.0.18, and 8.0.0 through 8.0.8, bad clients that always send a fixed batch value when the server is using the acknowledgement extension may cause the unacknowledged message queue to grow indefinitely, eventually causing an `OutOfMemoryError`. Versions 5.0.23, 6.0.19, 7.0.19, and 8.0.9 patch the issue. As a workaround, disable the acknowledgement extension.
| CWE | CWE-400 |
| Vendor | cometd |
| Product | cometd |
| Published | Jun 18, 2026 |
| Last Updated | Jun 18, 2026 |
Stay Ahead of the Next One
Get instant alerts for cometd cometd
Be the first to know when new high vulnerabilities affecting cometd cometd are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected Versions
cometd / cometd
>= 5.0.0, < 5.0.23 >= 6.0.0, < 6.0.19 >= 7.0.0, < 7.0.19 >= 8.0.0, < 8.0.9
References
github.com: https://github.com/cometd/cometd/security/advisories/GHSA-cqgj-h8vf-4w59 github.com: https://github.com/cometd/cometd/issues/2117 github.com: https://github.com/cometd/cometd/pull/2118 github.com: https://github.com/cometd/cometd/pull/2168 github.com: https://github.com/cometd/cometd/pull/2169 github.com: https://github.com/cometd/cometd/discussions/2116