CNNVD-202509-4112 Information

CNNVD ID

CNNVD-202509-4112

Related CVE

CVE-2025-11011

• CNNVD Published: 2025-09-26

Description (Chinese)

BehaviorTree.CPP是BehaviorTree开源的一个C++中的行为树的库。 BehaviorTree.CPP 4.7.0及之前版本存在代码问题漏洞，该漏洞源于对文件/src/json_export.cpp中函数JsonExporter::fromJson的参数Source的错误操作，可能导致空指针取消引用。

Description (English)

BehaviorTree.CPP is the reservoir of a C++ behavioural tree in BehaviorTree ’ s open source. There is a code problem loophole in BehaviorTree.CPP4.7.0 and earlier versions, which stems from the error of Sourse, the parameter used in document /src/json export.cpp for JsonExporter::fromJson, which may lead to an empty pointer cancellation of the reference.

Hazard Level

Critical

Vulnerability Type

代码问题

Affected Vendor

BehaviorTree

Published

2025-09-26

Last Modified

2026-02-24

References

https://github.com/BehaviorTree/BehaviorTree.CPP/commit/4b23dcaf0ce951a31299ebdd61df69f9ce99a76d https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1008 https://github.com/BehaviorTree/BehaviorTree.CPP/pull/1009 https://github.com/user-attachments/files/22270928/poc.zip https://vuldb.com/?ctiid.325954 https://vuldb.com/?id.325954 https://vuldb.com/?submit.654073 https://access.redhat.com/security/cve/cve-2025-11011