CVE-2025-11013

🗓️ 26 Sep 2025 12:02:06Reported by VulDBType

A local null pointer dereference in XMLParser::PImpl::loadDocImpl in BehaviorTree up to 4.7.0.

Reporter	Title	Published	Views	Family All 9
CNNVD	BehaviorTree.CPP 代码问题漏洞	26 Sep 202500:00	–	cnnvd
Cvelist	CVE-2025-11013 BehaviorTree XML Parser xml_parsing.cpp loadDocImpl null pointer dereference	26 Sep 202512:02	–	cvelist
EUVD	EUVD-2025-31340	3 Oct 202520:07	–	euvd
NVD	CVE-2025-11013	26 Sep 202513:15	–	nvd
Positive Technologies	PT-2025-39634	26 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-11013	27 Sep 202512:52	–	redhatcve
Snyk	NULL Pointer Dereference	26 Sep 202512:43	–	snyk
Snyk	NULL Pointer Dereference	26 Sep 202512:43	–	snyk
Vulnrichment	CVE-2025-11013 BehaviorTree XML Parser xml_parsing.cpp loadDocImpl null pointer dereference	26 Sep 202512:02	–	vulnrichment

NVD

Vulners

Node

behaviortree behaviortreeRange≤4.7.0

[
  {
    "vendor": "n/a",
    "product": "BehaviorTree",
    "versions": [
      {
        "version": "4.0",
        "status": "affected"
      },
      {
        "version": "4.1",
        "status": "affected"
      },
      {
        "version": "4.2",
        "status": "affected"
      },
      {
        "version": "4.3",
        "status": "affected"
      },
      {
        "version": "4.4",
        "status": "affected"
      },
      {
        "version": "4.5",
        "status": "affected"
      },
      {
        "version": "4.6",
        "status": "affected"
      },
      {
        "version": "4.7.0",
        "status": "affected"
      }
    ],
    "modules": [
      "XML Parser"
    ]
  }
]

Source	Link
github	www.github.com/BehaviorTree/BehaviorTree.CPP/pull/1004
vuldb	www.vuldb.com/
github	www.github.com/user-attachments/files/22245915/poc.zip
github	www.github.com/BehaviorTree/BehaviorTree.CPP/issues/1003
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

29 Apr 2026 01:00Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.13.3 - 5.5

CVSS 21.7

CVSS 44.8

CVSS 33.3

EPSS0.0003

SSVC