CVE-2025-11011

🗓️ 26 Sep 2025 11:32:08Reported by VulDBType

CVE-2025-11011: BehaviorTree fromJson null pointer dereference via manipulated Source; patch available.

Reporter	Title	Published	Views	Family All 9
CNNVD	BehaviorTree.CPP 代码问题漏洞	26 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-11011 BehaviorTree json_export.cpp fromJson null pointer dereference	26 Sep 202511:32	–	cvelist
EUVD	EUVD-2025-31334	3 Oct 202520:07	–	euvd
NVD	CVE-2025-11011	26 Sep 202512:15	–	nvd
Positive Technologies	PT-2025-39632	26 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-11011	27 Sep 202511:32	–	redhatcve
Snyk	NULL Pointer Dereference	26 Sep 202511:44	–	snyk
Snyk	NULL Pointer Dereference	26 Sep 202511:44	–	snyk
Vulnrichment	CVE-2025-11011 BehaviorTree json_export.cpp fromJson null pointer dereference	26 Sep 202511:32	–	vulnrichment

NVD

Vulners

Node

behaviortree behaviortreeRange<4.7.3

[
  {
    "vendor": "n/a",
    "product": "BehaviorTree",
    "versions": [
      {
        "version": "4.0",
        "status": "affected"
      },
      {
        "version": "4.1",
        "status": "affected"
      },
      {
        "version": "4.2",
        "status": "affected"
      },
      {
        "version": "4.3",
        "status": "affected"
      },
      {
        "version": "4.4",
        "status": "affected"
      },
      {
        "version": "4.5",
        "status": "affected"
      },
      {
        "version": "4.6",
        "status": "affected"
      },
      {
        "version": "4.7.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/BehaviorTree/BehaviorTree.CPP/pull/1009
github	www.github.com/user-attachments/files/22270928/poc.zip
github	www.github.com/BehaviorTree/BehaviorTree.CPP/commit/4b23dcaf0ce951a31299ebdd61df69f9ce99a76d
vuldb	www.vuldb.com/
github	www.github.com/BehaviorTree/BehaviorTree.CPP/issues/1008
vuldb	www.vuldb.com/

29 Apr 2026 01:00Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.13.3 - 5.5

CVSS 21.7

CVSS 44.8

CVSS 33.3

EPSS0.00031

SSVC