PT-2025-35357 · Unknown+1 · Mupen64Plus+1
Gangyang Li
·
Published
2025-08-30
·
Updated
2025-09-02
·
CVE-2025-9688
CVSS v2.0
5.1
Medium
| Vector | AV:N/AC:H/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Mupen64Plus versions through 2.6.0
Description
A security issue has been identified in Mupen64Plus. The
write is viewer function within the src/device/cart/is viewer.c file is susceptible to an integer overflow. This issue can be initiated remotely and is considered to have high complexity with difficult exploitability. The exploit has been publicly disclosed. The vendor was informed of this disclosure but did not respond.Recommendations
Update Mupen64Plus to a version newer than 2.6.0.
As a temporary workaround, consider restricting access to the
write is viewer function until a patch is available.Exploit
Fix
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Debian
Mupen64Plus