CVE-2025-3845

Name of the Vulnerable Software and Affected Versions markparticle WebServer version 1.0

Description A critical vulnerability was found in the markparticle WebServer, affecting the function Buffer::HasWritten of the file code/buffer/buffer.cpp. The manipulation of the argument writePos leads to a buffer overflow. This issue can be exploited remotely, and the exploit has been disclosed to the public. The attack may be launched remotely.

Recommendations As a temporary workaround, consider disabling the Buffer::HasWritten function until a patch is available. Restrict access to the vulnerable module code/buffer/buffer.cpp to minimize the risk of exploitation. Avoid using the argument writePos in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.