CVE-2025-29365CRITICAL 9.8EPSS p36.6%

CVE-2025-29365CVE-2025-29365

Description

spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in READ_STRING_SYSCALL.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.46% probability of exploitation · percentile 36.6% · 2026-06-18T12:00:27Z
Published2025-08-22
Last modified2025-10-01

Underlying weaknesses· 4

CWE-120CWE-125CWE-274CWE-787

References

  1. https://gist.github.com/Giles-one/3a80cd1c7014e50601bd1c0dd9d41663
  2. https://github.com/Giles-one/spimsimulatorEscape?tab=readme-ov-file#bug1-out-of-bounds-write-in-read_input-function

4

TypeTargetConfidenceTier
WeaknessBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')cwe-1200%live
WeaknessOut-of-bounds Readcwe-1250%live
WeaknessImproper Handling of Insufficient Privilegescwe-2740%live
WeaknessOut-of-bounds Writecwe-7870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-9801
CVE
CVE-2025-29045
CVE
CVE-2025-10451
CVE
CVE-2025-32105
CVE
CVE-2025-55116
CVE
CVE-2025-50360
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.