CVE-2025-58750

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions: rAthena versions prior to commit 0cc348b

Description: rAthena is an open-source cross-platform massively multiplayer online role playing game (MMORPG) server. A missing bound check in the chclif parse moveCharSlot function can lead to out-of-bounds read and write operations triggered by user-supplied input.

Recommendations: Update to commit 0cc348b or a later version to address the issue.

Exploit

Fix

Out of bounds Read

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-787CWE-119

Related Identifiers

CVE-2025-58750

GHSA-PJH7-JGR8-4FF6

Affected Products

Rathena

CVE-2025-58750

Weakness Enumeration

Related Identifiers

Affected Products

References · 7