{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "fixed": "4.7.3" } ] }, "events": [ { "introduced": "0" }, { "fixed": "9b3e791f8c09845866bf50faf2c56d7bcd99ea42" }, { "fixed": "cb6c7514efa628adb8180b58b4c9ccdebbe096e3" } ], "repo": "https://github.com/behaviortree/behaviortree.cpp", "type": "GIT" } ] } ], "details": "A vulnerability was determined in BehaviorTree up to 4.7.0. This affects the function ParseScript of the file /src/script_parser.cpp of the component Diagnostic Message Handler. Executing manipulation of the argument error_msgs_buffer can lead to stack-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. This patch is called cb6c7514efa628adb8180b58b4c9ccdebbe096e3. A patch should be applied to remediate this issue.", "id": "CVE-2025-11012", "modified": "2026-04-01T23:09:43.231216281Z", "published": "2025-09-26T12:15:35.157Z", "references": [ { "type": "ADVISORY", "url": "https://vuldb.com/?id.325955" }, { "type": "ADVISORY", "url": "https://vuldb.com/?submit.654074" }, { "type": "REPORT", "url": "https://github.com/BehaviorTree/BehaviorTree.CPP/pull/1007" }, { "type": "REPORT", "url": "https://vuldb.com/?ctiid.325955" }, { "type": "REPORT", "url": "https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1006" }, { "type": "FIX", "url": "https://github.com/BehaviorTree/BehaviorTree.CPP/commit/cb6c7514efa628adb8180b58b4c9ccdebbe096e3" }, { "type": "EVIDENCE", "url": "https://github.com/user-attachments/files/22251337/poc.zip" } ], "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }