CVE-2025-11012 BehaviorTree Diagnostic Message script_parser.cpp ParseScript stack-based overflow

🗓️ 26 Sep 2025 11:32:12Reported by VulDBType

CVE-2025-11012: BehaviorTree ParseScript causes stack overflow via error buffer; patch cb6c7514.

Reporter	Title	Published	Views	Family All 9
CNNVD	BehaviorTree.CPP 安全漏洞	26 Sep 202500:00	–	cnnvd
CVE	CVE-2025-11012	26 Sep 202511:32	–	cve
EUVD	EUVD-2025-31333	3 Oct 202520:07	–	euvd
NVD	CVE-2025-11012	26 Sep 202512:15	–	nvd
Positive Technologies	PT-2025-39633	26 Sep 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-11012	27 Sep 202511:32	–	redhatcve
Snyk	Stack-based Buffer Overflow	26 Sep 202511:44	–	snyk
Snyk	Stack-based Buffer Overflow	26 Sep 202511:44	–	snyk
Vulnrichment	CVE-2025-11012 BehaviorTree Diagnostic Message script_parser.cpp ParseScript stack-based overflow	26 Sep 202511:32	–	vulnrichment

[
  {
    "vendor": "n/a",
    "product": "BehaviorTree",
    "versions": [
      {
        "version": "4.0",
        "status": "affected"
      },
      {
        "version": "4.1",
        "status": "affected"
      },
      {
        "version": "4.2",
        "status": "affected"
      },
      {
        "version": "4.3",
        "status": "affected"
      },
      {
        "version": "4.4",
        "status": "affected"
      },
      {
        "version": "4.5",
        "status": "affected"
      },
      {
        "version": "4.6",
        "status": "affected"
      },
      {
        "version": "4.7.0",
        "status": "affected"
      }
    ],
    "modules": [
      "Diagnostic Message Handler"
    ]
  }
]

Source	Link
github	www.github.com/BehaviorTree/BehaviorTree.CPP/issues/1006
github	www.github.com/BehaviorTree/BehaviorTree.CPP/pull/1007
vuldb	www.vuldb.com/
github	www.github.com/user-attachments/files/22251337/poc.zip
vuldb	www.vuldb.com/
github	www.github.com/BehaviorTree/BehaviorTree.CPP/commit/cb6c7514efa628adb8180b58b4c9ccdebbe096e3
vuldb	www.vuldb.com/

26 Sep 2025 11:32Current

CVSS 24.3

CVSS 44.8

CVSS 3.15.3

CVSS 35.3

EPSS0.0022