CVE-2025-6566 Information

Description

A vulnerability was found in oatpp Oat++ up to 1.3.1. It has been declared as critical. This vulnerability affects the function deserializeArray of the file src/oatpp/json/Deserializer.cpp. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/oatpp/oatpp/issues/1037 https://github.com/oatpp/oatpp/issues/1037 https://github.com/user-attachments/files/19579448/oatpp_crash.txt https://vuldb.com/?ctiid.313738 https://vuldb.com/?id.313738 https://vuldb.com/?submit.597453

Related CNNVD

CNNVD-202506-3082 (Published: 2025-06-24)