CVE-2025-3409

Medium CVSS: 5.3

A vulnerability classified as critical has been found in Nothings stb up to f056911. This affects the function stb_include_string. The manipulation of the argument path_to_includes leads to stack-based buffer overflow. It is possible to initiate the attack remotely. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Nothings

Product

Stb Image.h

CWE

CWE-119

Yayın Tarihi

2025-04-08 05:15:40

Güncelleme

2025-10-16 15:08:25

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Stb Image.h MEDIUM Nothings 2025

Referanslar

https://vuldb.com/?ctiid.303687 https://vuldb.com/?id.303687 https://vuldb.com/?submit.544231

Benzer Kayıtlar

Medium

CVE-2025-3408

A vulnerability was found in Nothings stb up to f056911. It has been rated as critical. Affected by this issue is the fu…

Medium

CVE-2025-3406

A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affected is the function…

Medium

CVE-2025-3407

A vulnerability was found in Nothings stb up to f056911. It has been declared as critical. Affected by this vulnerabilit…