Home > Vulnerability Database > CVE-2025-68114

Mend.io Vulnerability Database

CVE-2025-68114

Date: December 17, 2025

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStream_concat lets a malicious cs_opt_mem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit 2c7797182a1618be12017d7d41e0b6581d5d529e fixes the issue.

Severity Score

9.8

Related Resources (4)

Url: https://github.com/capstone-engine/capstone/security/advisories/GHSA-85f5-6xr3-q76r

Url: https://github.com/capstone-engine/capstone/commit/2c7797182a1618be12017d7d41e0b6581d5d529e

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-68114

Url: https://www.mend.io/vulnerability-database/CVE-2025-68114

Severity Score

9.8

Weakness Type (CWE)

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-120

Buffer Underwrite ('Buffer Underflow')

CWE-124

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-68114

Date: December 17, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?