PT-2025-39639 · Unknown+1 · Ogrecave Ogre+1
Sand
·
Published
2025-09-26
·
Updated
2025-09-26
·
CVE-2025-11015
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
OGRECave Ogre versions through 14.4.1
Description
A flaw exists in OGRECave Ogre that relates to mismatched memory management routines. This issue is present in the
STBIImageCodec::encode function located in the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp. Exploitation is limited to local execution, and the exploit has been publicly released.Recommendations
Update to a version beyond 14.4.1.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Debian
Ogrecave Ogre