CVE-2025-9001 Information

Description

A vulnerability was determined in LemonOS up to nightly-2024-07-12 on LemonOS. Affected by this issue is the function HTTPGet of the file /Applications/Steal/main.cpp of the component HTTP Client. The manipulation of the argument chunkSize leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Reference

https://hkohi.ca/vulnerability/16 https://vuldb.com/?ctiid.320030 https://vuldb.com/?id.320030 https://github.com/LemonOSProject/LemonOS/issues/60 https://vuldb.com/?submit.624974 https://github.com/LemonOSProject/LemonOS/issues/60 https://hkohi.ca/vulnerability/16 https://vuldb.com/?submit.624974

Related CNNVD

CNNVD-202508-1793 (Published: 2025-08-15)