CVE-2025-9809

Name of the Vulnerable Software and Affected Versions libretro libretro-common (affected versions not specified)

Description An out-of-bounds write issue exists in the cdfs open cue track function. This allows remote attackers to execute arbitrary code via a crafted .cue file. The issue occurs when a file path within the .cue file exceeds PATH MAX LENGTH. The memcpy function copies this path into a fixed-size buffer, leading to the write beyond the buffer's boundaries.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.