CVE-2025-11602

A flaw was found in Neo4j. A potential information leak in the bolt protocol handshake allows an attacker to obtain one byte of information from previous connections. However, the attacker has no control over the information leaked in server responses. Mitigation Mitigation for this issue is eith...

CVE-2025-11602 Untargeted information leak in Bolt protocol handshake

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses...

CVE-2025-11602

The CVE-2025-11602 issue affects Neo4j Bolt protocol handshakes in both Neo4j Enterprise and Community editions. The flaw allows an attacker to obtain one byte of information from a previous connection during the bolt handshake, with the leaked data being under attacker control over the responses...

CVE-2025-11602 Untargeted information leak in Bolt protocol handshake

Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses...

Neo4j Enterprise Edition和Neo4j Community Edition 安全漏洞

Neo4j Enterprise Edition and Neo4j Community Edition are both graph databases from Neo4j USA. A security vulnerability exists in Neo4j Enterprise Edition and Neo4j Community Edition that stems from information disclosure during the bolt protocol handshake, which could lead to an attacker obtainin...