CVE-2025-14911

User-controlled chunkSize metadata from MongoDB lacks appropriate validation allowing malformed GridFS metadata to overflow the bounding container...

MongoDB security vulnerabilities

MongoDB is a document-oriented database management system developed by MongoDB Corporation in the United States. There is a security vulnerability in MongoDB, which stems from insufficient validation of the chunkSize metadata. This vulnerability may lead to a overflow of the boundary container du...

CVE-2025-9001

A vulnerability was determined in LemonOS up to nightly-2024-07-12 on LemonOS. Affected by this issue is the function HTTPGet of the file /Applications/Steal/main.cpp of the component HTTP Client. The manipulation of the argument chunkSize leads to stack-based buffer overflow. The attack may be...

CVE-2025-9001

A vulnerability was determined in LemonOS up to nightly-2024-07-12 on LemonOS. Affected by this issue is the function HTTPGet of the file /Applications/Steal/main.cpp of the component HTTP Client. The manipulation of the argument chunkSize leads to stack-based buffer overflow. The attack may be...

CVE-2025-9001

Summary: CVE-2025-9001 affects LemonOS HTTP Client, specifically the HTTPGet function in /Applications/Steal/main.cpp. The vulnerability arises from manipulating the chunkSize argument, causing a stack-based buffer overflow. It can be exploited remotely, and public disclosures exist. The issue is...

LemonOS 安全漏洞

LemonOS is an operating system in the Lemon OS open source. A security vulnerability exists in LemonOS nightly-2024-07-12 and earlier versions, which stems from a stack buffer overflow due to incorrect manipulation of the parameter chunkSize in the file /Applications/Steal/main.cpp...