CVE-2025-4059

Name of the Vulnerable Software and Affected Versions code-projects Prison Management System version 1.0

Description A critical vulnerability was found in the Prison Management System, affecting the addrecord function of the Prison Mgmt Sys component. The manipulation of the filename argument leads to a stack-based buffer overflow. An attack must be approached locally, and the exploit has been disclosed to the public.

Recommendations As a temporary workaround, consider disabling the addrecord function until a patch is available. Restrict access to the Prison Mgmt Sys component to minimize the risk of exploitation. Avoid using the filename argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.