7.5

CVSS Score

3.0

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-6176

CVE-2025-6176: Brotli is vulnerable to a denial of service (DoS) attack due to decompression

Brotli versions up to 1.1.0 are vulnerable to a denial of service (DoS) attack due to decompression. This issue has been patched in Brotli version 1.2.0.

Additionally, this affects users who implement the Brotli decompression with Scrapy versions up to 2.13.2, leaving them vulnerable to a denial of service (DoS) attack. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occurs because brotli can achieve extremely high compression ratios for zero-filled data, leading to excessive memory consumption during decompression.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-6176

CVE-2025-6176:

7.5

CVSS Score

3.0

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
brotli	pip	<= 1.1.0

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability is a denial-of-service in the Brotli Python library's decompression functionality. Specifically, when decompressing a specially crafted data stream (a "decompression bomb"), the library could be forced to allocate an extremely large amount of memory, leading to a crash. This is because the decompression functions did not enforce a limit on the size of the output data.

The analysis of the patch commit 67d78bc41db1a0d03f2e763497748f2f69946627 reveals the exact location of the vulnerability and the fix.

The core changes are in python/_brotli.c:

Streaming Decompression: The brotli.Decompressor object's process method (implemented by the C function brotli_Decompressor_process) was vulnerable. The original implementation would call a C helper function decompress_stream which continuously grew an output buffer (BlocksOutputBuffer) without any upper bound. An attacker could provide a small input that decompresses to a huge size, exhausting system memory. The patch introduces a max_output_length parameter to the process method. This limit is then enforced within the modified C functions (decompress_stream, BlocksOutputBuffer_Grow) to prevent excessive memory allocation. The vulnerable function is the process method before this limit was introduced.
One-shot Decompression: The brotli.decompress function was also modified. While the patch focuses on the streaming decompressor, the one-shot function also used the same unbounded buffer growth logic. The patch modifies the call to BlocksOutputBuffer_InitAndGrow to pass PY_SSIZE_T_MAX as a limit. While this still allows for very large allocations, it's a change related to the vulnerability. The primary vulnerable function is the streaming process method, as it's more susceptible to attacks where the final output size is unknown.

Therefore, the key function that would appear in a runtime profile during exploitation is Decompressor.process. The decompress function is also a potential indicator.

Vulnerable functions

Decompressor.process

python/_brotli.c

The `process` method of the `brotli.Decompressor` object is vulnerable. Its C implementation, `brotli_Decompressor_process`, previously called a `decompress_stream` function that would allocate memory for decompressed data without any size limit. An attacker could provide a highly compressed input (a 'decompression bomb') that, upon decompression, would exhaust system memory, causing a Denial of Service. The patch mitigates this by introducing a `max_output_length` parameter to limit the size of the decompressed output.

decompress

python/_brotli.c

The one-shot `brotli.decompress` function was also vulnerable as it used the same underlying unbounded buffer allocation mechanism (`BlocksOutputBuffer_InitAndGrow`). While the primary fix targeted the streaming decompressor, this function was also modified to pass a theoretical maximum size limit (`PY_SSIZE_T_MAX`). Before the patch, this function was susceptible to the same memory exhaustion attack as the streaming `process` method.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

7.5

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-6176: Brotli is vulnerable to a denial of service (DoS) attack due to decompression

CVE-2025-6176:

7.5

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

CVE-2025-6176: Brotli is vulnerable to a denial of service (DoS) attack due to decompression

7.5

7.5

Basic Information

Basic Information

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI