CVE-2025-8760 | INSTAR 2K+/4K 3.11.1 Build 1124 fcgi_server base64_decode Authorization buffer overflow (MZ-25-03)

Inserito da Angelo Barbosa | Ago 13, 2025 | CVE

A vulnerability, which was classified as critical, was found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This affects the function base64_decode of the component fcgi_server. The manipulation of the argument Authorization leads to buffer overflow.

This vulnerability is uniquely identified as CVE-2025-8760. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply restrictive firewalling.

CVE-2025-8760 | INSTAR 2K+/4K 3.11.1 Build 1124 fcgi_server base64_decode Authorization buffer overflow (MZ-25-03)

Post correlati

CVE-2025-23671 | Fabio Savina WP OpenSearch Plugin up to 1.0 on WordPress cross site scripting

CVE-2024-28255 | open-metadata OpenMetadata up to 1.2.3 /api/v1 getUserPrincipal improper authentication

CVE-2024-39882 | Delta Electronics CNCSoft-G2 2.0.0.5 out-of-bounds (icsa-24-191-01)

CVE-2023-4770 | 4D.exe/4D Server.exe 19 R8 100218 shfolder.dll uncontrolled search path