CRITICAL🇵🇱 Wersja polska

CVE-2025-25565

CVSS 9.8v3.1pub. 2025-03-12upd. 2025-07-19

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. NOTE: the Supplier disputes this because the behavior only allows a user to attack himself by typing a long string on a command line.

🤖 AI Analysis
How it works

The vulnerability stems from a lack of proper validation of input data length (CWE-120 – classic buffer overflow without boundary checking) in the PtMakeCert and PtMakeCert2048 functions in the Command.c file. Passing an excessively long string as an argument causes a buffer overflow in memory. According to the vendor, the attack scenario is limited to a local command line handled by the user themselves, which significantly limits the actual exploitation vector.

Impact

If the vulnerability were successfully exploited, an attacker could potentially gain full control over the confidentiality, integrity, and availability of the system (CVSS score: C:H/I:H/A:H). However, the vendor reserves that in practice, a user can only harm their own session by intentionally entering malicious input.

Mitigation & patch

Apply patches available from the vendor according to the references. Due to the vendor's questioning of the vulnerability, it is recommended to monitor official SoftEther VPN communications and apply the principle of least privilege when accessing the VPN command-line interface.

Who is affected

SoftEther VPN version 5.02.5187

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Softether Vpn

    APP
    Softether
    5.02.5187
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
MemoryVPN
CWE
References

Related vulnerabilities

CVE-2025-25567CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w SoftEther VPN – funkcja UniToStrForSingleChars

CVE-2025-25568CRITICAL9.8PL ✓ten sam produkt

Use-after-free w SoftEther VPN 5.02.5187 – Command.c (CheckNetworkAcceptThread)

CVE-2023-27395CRITICAL9.0ten sam produkt

A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther...

CVE-2023-23581HIGH7.5ten sam produkt

A denial-of-service vulnerability exists in the vpnserver EnSafeHttpHeaderValueStr functionality of SoftEther ...

CVE-2023-25774HIGH7.5ten sam produkt

A denial-of-service vulnerability exists in the vpnserver ConnectionAccept() functionality of SoftEther VPN 5....