CNNVD-202506-3082 Information

CNNVD ID

CNNVD-202506-3082

Related CVE

CVE-2025-6566

• CNNVD Published: 2025-06-24

Description (Chinese)

Oat++是Oat++开源的一个C++web框架，用于高度可扩展和资源高效的web应用程序。 oatpp Oat++ 1.3.1及之前版本存在安全漏洞，该漏洞源于Deserializer.cpp中deserializeArray函数存在栈缓冲区溢出问题。

Description (English)

Oat++ is an open-source C++web framework for highly scalable and resource-efficient web applications. There is a security loophole in the oatpp Oat++ 1.3.1 and earlier versions, which is the result of a spill in the deserialize Array function of Deserializer.cpp.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Oat++

Published

2025-06-24

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.313738 https://vuldb.com/?id.313738 https://github.com/user-attachments/files/19579448/oatpp_crash.txt https://vuldb.com/?submit.597453 https://github.com/oatpp/oatpp/issues/1037 https://access.redhat.com/security/cve/cve-2025-6566