ГлавнаяУязвимости → CVE-2025-9809
9.8критическая

CVE-2025-9809

Описание

Out-of-bounds write in cdfs_open_cue_track in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATH_MAX_LENGTH that is copied using memcpy into a fixed-size buffer.

Затрагиваемое ПО
Libretro Libretro-common
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/libretro/libretro-common/blob/master/formats/cdfs/cdfs.c#L471https://github.com/libretro/libretro-common/issues/222