Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2025-9809

Опубликовано: 01 сент. 2025
Источник: nvd
CVSS3: 9.8
EPSS Низкий

Описание

Out-of-bounds write in cdfs_open_cue_track in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATH_MAX_LENGTH that is copied using memcpy into a fixed-size buffer.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:libretro:libretro-common:-:*:*:*:*:*:*:*

EPSS

Процентиль: 66%
0.00513
Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2025-9809

CVSS3: 9.8
ubuntu
5 месяцев назад

Out-of-bounds write in cdfs_open_cue_track in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATH_MAX_LENGTH that is copied using memcpy into a fixed-size buffer.

debian логотип

CVE-2025-9809

CVSS3: 9.8
debian
5 месяцев назад

Out-of-bounds write in cdfs_open_cue_track in libretro libretro-common ...

github логотип

GHSA-2cg7-x3pg-q7xf

CVSS3: 9.8
github
около 1 месяца назад

Out-of-bounds write in cdfs_open_cue_track in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATH_MAX_LENGTH that is copied using memcpy into a fixed-size buffer.

EPSS

Процентиль: 66%
0.00513
Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787