CVE-2025-61301

Published: Oct 20, 2025

Modified: Oct 21, 2025

PUBLISHED

Description

Denial-of-analysis in reporting/mongodb.py and reporting/jsondump.py in CAPEv2 (commit 52e4b43, on 2025-05-17) allows attackers who can submit samples to cause incomplete or missing behavioral analysis reports by generating deeply nested or oversized behavior data that trigger MongoDB BSON limits or orjson recursion errors when the sample executes in the sandbox.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://capev2.com

https://github.com/kevoreilly/CAPEv2

https://github.com/eGkritsis/CVE-2025-61301

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-61301

Description

Affected Products

References