CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-1187: code-projects Police FIR Record Management System Delete Record stack-based overflow

4.8 CVSS

Description

A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. In code-projects Police FIR Record Management System 1.0 wurde eine kritische Schwachstelle entdeckt. Dabei geht es um eine nicht genauer bekannte Funktion der Komponente Delete Record Handler. Durch das Manipulieren mit unbekannten Daten kann eine stack-based buffer overflow-Schwachstelle ausgenutzt werden. Der Angriff muss lokal angegangen werden. Der Exploit steht zur öffentlichen Verfügung.

Classification

CVE ID: CVE-2025-1187

CVSS Base Severity: MEDIUM

CVSS Base Score: 4.8

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Products

Vendor: code-projects

Product: Police FIR Record Management System

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.06% (probability of being exploited)

EPSS Percentile: 28.34% (scored less or equal to compared to others)

EPSS Date: 2025-03-13 (when was this score calculated)

References

https://vuldb.com/?id.295093
https://vuldb.com/?ctiid.295093
https://vuldb.com/?submit.495921
https://github.com/zzzxc643/cve/blob/main/STACK_OVERFLOW_cve.md
https://code-projects.org/

Timeline

2025-02-13 00:33:15 UTC
CVE

code-projects Police FIR Record Management System Delete Record stack-based overflow