EUVD-2025-31334

Malicious code in bioql PyPI...

CVE-2025-11013

A vulnerability was identified in BehaviorTree up to 4.7.0. This vulnerability affects the function XMLParser::PImpl::loadDocImpl of the file /src/xmlparsing.cpp of the component XML Parser. The manipulation leads to null pointer dereference. The attack can only be performed from a local...

CVE-2025-11013

A vulnerability was identified in BehaviorTree up to 4.7.0. This vulnerability affects the function XMLParser::PImpl::loadDocImpl of the file /src/xmlparsing.cpp of the component XML Parser. The manipulation leads to null pointer dereference. The attack can only be performed from a local...

CVE-2025-11013

A vulnerability was identified in BehaviorTree up to 4.7.0. This vulnerability affects the function XMLParser::PImpl::loadDocImpl of the file /src/xmlparsing.cpp of the component XML Parser. The manipulation leads to null pointer dereference. The attack can only be performed from a local...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the loadDocImpl function. An attacker can cause a denial of service by triggering a null pointer dereference through local access to the affected component. Remediation Upgrade behaviortree.cpp to version...

CVE-2025-11013 BehaviorTree XML Parser xml_parsing.cpp loadDocImpl null pointer dereference

A vulnerability was identified in BehaviorTree up to 4.7.0. This vulnerability affects the function XMLParser::PImpl::loadDocImpl of the file /src/xmlparsing.cpp of the component XML Parser. The manipulation leads to null pointer dereference. The attack can only be performed from a local...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the fromJson function. An attacker can cause a denial of service by providing a crafted argument to trigger a null pointer dereference. Remediation A fix was pushed into the master branch but not yet...

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the ParseScript function in the Diagnostic Message Handler component of scriptparser.cpp. An attacker can execute arbitrary code or cause a denial of service by providing a specially crafted argument to...

CVE-2025-11012

BehaviorTree.CPP before 4.7.0 is affected by a vulnerability in the Diagnostic Message Handler’s ParseScript function (src/script_parser.cpp). Improper manipulation of the error_msgs_buffer can cause a stack-based buffer overflow. Exploitation is local, and public disclosures and a patch referenc...

CVE-2025-11011 BehaviorTree json_export.cpp fromJson null pointer dereference

A vulnerability was found in BehaviorTree up to 4.7.0. Affected by this issue is the function JsonExporter::fromJson of the file /src/jsonexport.cpp. Performing manipulation of the argument Source results in null pointer dereference. The attack needs to be approached locally. The exploit has been...

CVE-2025-11011 BehaviorTree json_export.cpp fromJson null pointer dereference

A vulnerability was found in BehaviorTree up to 4.7.0. Affected by this issue is the function JsonExporter::fromJson of the file /src/jsonexport.cpp. Performing manipulation of the argument Source results in null pointer dereference. The attack needs to be approached locally. The exploit has been...

CVE-2025-11011

BehaviorTree.CPP up to version 4.7.0 contains a flaw in JsonExporter::fromJson that can cause a NULL pointer dereference when the Source argument is manipulated. The vulnerability requires local access and a public exploit is available (PoC referenced). A patch is available and named 4b23dcaf0ce9...

BehaviorTree.CPP 代码问题漏洞

BehaviorTree.CPP is a library for behavior trees in C++ open-sourced by BehaviorTree. A code issue vulnerability exists in BehaviorTree.CPP version 4.7.0 and earlier, which stems from a null pointer dereference in the XMLParser::PImpl::loadDocImpl function in the XML Parser component, which could...