CVE-2025-11602 – Untargeted information leak in Bolt protocol handshake

CVE ID : CVE-2025-11602

Published : Oct. 31, 2025, 10:20 a.m. | 1 hour, 6 minutes ago

Description : Potential information leak in bolt protocol handshake in Neo4j Enterprise and Community editions allows attacker to obtain one byte of information from previous connections. The attacker has no control over the information leaked in server responses.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…