CVE-2025-68114

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Capstone versions 6.0.0-Alpha5 and prior

Description An unchecked return value from the vsnprintf function within SStream concat can lead to a stack buffer underflow or overflow. A malicious cs opt mem.vsnprintf input can cause SStream’s index to become negative or exceed the buffer boundaries, resulting in a stack buffer underflow/overflow during subsequent write operations.

Recommendations Update to a version later than 6.0.0-Alpha5.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-124CWE-120

Related Identifiers

ALSA-2026:4898

ALSA-2026:6817

AZL-72697

AZL-72821

AZL-74805

BDU:2026-04943

CVE-2025-68114

GHSA-85F5-6XR3-Q76R

RHSA-2026:13923

RHSA-2026:4898

RHSA-2026:5123

RHSA-2026:5124

RHSA-2026:5125

RHSA-2026:5224

RHSA-2026:6817

SUSE-SU-2026:0060-1

SUSE-SU-2026:20054-1

SUSE-SU-2026:20868-1

Affected Products

Capstone

Debian

Rocky Linux

CVE-2025-68114

Weakness Enumeration

Related Identifiers

Affected Products

References · 46