CVE-2025-15536

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions BYVoid OpenCC versions through 1.1.9

Description A flaw exists in BYVoid OpenCC that could allow for local code execution. This issue stems from a heap-based buffer overflow within the opencc::MaxMatchSegmentation function located in the src/MaxMatchSegmentation.cpp file. The exploit for this issue has been publicly released.

Recommendations Deploy patch 345c9a50ab07018f1b4439776bad78a0d40778ec.

Exploit

Fix

Heap Based Buffer Overflow

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122CWE-119CWE-787

Related Identifiers

AZL-74768

AZL-74790

CVE-2025-15536

GHSA-5PR6-CRVP-2J9F

OESA-2026-1209

OESA-2026-1210

OESA-2026-1211

OESA-2026-1212

OESA-2026-1213

OPENSUSE-SU-2026:10102-1

OPENSUSE-SU-2026:20683-1

SUSE-SU-2026:21553-1

USN-7972-1

USN-7972-2

Affected Products

Byvoid Opencc

Linuxmint

Ubuntu

CVE-2025-15536

Weakness Enumeration

Related Identifiers

Affected Products

References · 37