CVE-2025-49850
Awaiting Analysis
Awaiting Analysis - Queue
BaseFortify
Publication date: 2025-06-17
Last updated on: 2025-06-17
Assigner: ICS-CERT
Description
Description
A Heap-based Buffer Overflow vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data structures.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-122 | A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc(). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a heap-based buffer overflow that occurs during the parsing of PRJ files. It happens because the application does not properly validate user-supplied data, which can lead to memory corruption issues such as reading or writing beyond the allocated memory boundaries.
How can this vulnerability impact me? :
The vulnerability can lead to memory corruption, which may cause the application to behave unpredictably, crash, or potentially allow an attacker to execute arbitrary code or escalate privileges within the affected system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70