EUVD-2025-204398

Genymobile/scrcpy versions up to and including 3.3.3 and prior to commit 3e40b24 contain a global buffer overflow vulnerability in the function scread32be, invoked via scdevicemsgdeserialize and processmsgs. Processing crafted device messages can cause reads beyond the bounds of a global buffer,...

CVE-2025-34449

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the scdevicemsgdeserialize function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-servic...

UBUNTU-CVE-2025-34449

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the scdevicemsgdeserialize function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-servic...

CVE-2025-34449 Genymobile/scrcpy <= 3.3.3 Global Buffer Overflow

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the scdevicemsgdeserialize function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-servic...

CVE-2021-3845

ws-scrcpy is vulnerable to External Control of File Name or Path...

PT-2022-10731 · Ws-Scrcpy · Ws-Scrcpy

Name of the Vulnerable Software and Affected Versions: ws-scrcpy affected versions not specified Description: The issue allows for external control of file name or path. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...