CVE-2025-4497

Sažetak

A vulnerability was found in code-projects Simple Banking System up to 1.0. It has been rated as critical. This issue affects some unknown processing of the component Sign In. The manipulation of the argument password2 leads to buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

Reference

https://code-projects.org/
https://github.com/zzzxc643/cve/blob/main/Banking_System.md
https://vuldb.com/?ctiid.308213
https://vuldb.com/?id.308213
https://vuldb.com/?submit.567082
https://github.com/zzzxc643/cve/blob/main/Banking_System.md

CVSS

Base:	4.3
Impact:	6.4
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

16-05-2025 - 14:51

Objavljeno

10-05-2025 - 07:15