PT-2025-47859 · Jarun Nnn · Jarun Nnn
Micromilo
·
Published
2025-11-23
·
Updated
2025-11-23
·
CVE-2025-13566
CVSS v4.0
4.8
Medium
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
jarun nnn versions up to 5.1
Description
A security issue exists in jarun nnn that can lead to a double free. The impacted element is the
show content in floating window/run cmd as plugin function within the nnn/src/nnn.c file. An attacker must have local access to exploit this issue.Recommendations
Install the patch with identifier 2f07ccdf21e705377862e5f9dfa31e1694979ac7 to address this issue.
Fix
Buffer Overflow
Double Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Jarun Nnn