CVE-2025-8736 | GNU cflow up to 1.8 Lexer c.c yylex buffer overflow

Inserito da Angelo Barbosa | Ago 8, 2025 | CVE

A vulnerability, which was classified as critical, has been found in GNU cflow up to 1.8. Affected by this issue is the function yylex of the file c.c of the component Lexer. The manipulation leads to buffer overflow.

This vulnerability is handled as CVE-2025-8736. Local access is required to approach this attack. Furthermore, there is an exploit available.

CVE-2025-8736 | GNU cflow up to 1.8 Lexer c.c yylex buffer overflow

Post correlati

CVE-2025-53864 | Connect2id Nimbus JOSE+JWT up to 10.0.1 JSON Object recursion

CVE-2024-13144 | zhenfeng13 My-Blog 1.0 BlogController.java uploadFileByEditomd editormd-image-file unrestricted upload

CVE-2024-4370 | WPZOOM Addons for Elementor Plugin up to 1.1.36 on WordPress Image Box Widget cross site scripting

CVE-2025-5677 | Campcodes Online Recruitment Management System 1.0 ajax.php?action=save_application position_id sql injection