CNNVD-202510-3829 Information

CNNVD ID

CNNVD-202510-3829

Related CVE

CVE-2025-53855

• CNNVD Published: 2025-10-28

Description (Chinese)

GCC Productions Fade In是美国GCC Productions公司的一款专业剧本编写软件。 GCC Productions Fade In 4.2.0版本存在缓冲区错误漏洞，该漏洞源于XML解析器功能存在越界写入，攻击者可通过特制.fadein文件触发该漏洞。

Description (English)

GCC Productions Fade In is a specialized script-writing software for GCC Productions in the United States. There is an error loophole in the buffer zone in version GCC Productions Fade In 4.2.0, which stems from the existence of a cross-border write-up of the XML solver function, which can be triggered by the attacker through a custom-made.fadein file.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

GCC Productions

Published

2025-10-28

Last Modified

2026-02-24

References

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2250 https://access.redhat.com/security/cve/cve-2025-53855

Patch

https://www.fadeinpro.com/page.pl?content=download