PT-2025-6118 · Code Projects · Code-Projects Vehicle Parking Management System

J0Hn.Fffff

Publicado

2025-02-10

Atualizado

2025-02-12

CVE-2025-1163

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions code-projects Vehicle Parking Management System version 1.0

Description A critical issue was found in the Authentication component, specifically affecting the login function. The manipulation of the username argument leads to a stack-based buffer overflow. This issue can be exploited locally.

Recommendations For code-projects Vehicle Parking Management System version 1.0, consider disabling the login function until a patch is available to prevent potential exploitation. Restrict access to the Authentication component to minimize the risk of a stack-based buffer overflow. Avoid using the username argument in the affected login function until the issue is resolved.

Exploit

Correção

Stack Overflow

Memory Corruption

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-121CWE-787CWE-119

Identificadores relacionados

CVE-2025-1163

Produtos afetados

Code-Projects Vehicle Parking Management System

PT-2025-6118 · Code Projects · Code-Projects Vehicle Parking Management System

CVE-2025-1163

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 10