CVE 8.8 HIGH

AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow_CVE-2025-66217

November 28, 2025 invoker category_cve

8.8 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Description

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, an integer underflow vulnerability exists in the MQTT parsing logic of AIS-catcher. This vulnerability allows an attacker to trigger a massive Heap Buffer Overflow by sending a malformed MQTT packet with a manipulated Topic Length field. This leads to an immediate Denial of Service (DoS) and, when used as a library, severe Memory Corruption that can be leveraged for Remote Code Execution (RCE). This issue has been patched in version 0.64.

AI Analysis

Integer underflow vulnerability in MQTT parsing logic leading to Heap Buffer Overflow and potential Remote Code Execution (RCE)

Basic Information

ID CVE-2025-66217

Source GitHub_M

Published Nov 29, 2025 at 01:57

Affected Product

Vendor jvde-github

Product AIS-catcher

Version < 0.64

Affected Versions jvde-github AIS-catcher < 0.64

CWE Classification

CWE-122 CWE-191

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor jvde-github

Product AIS-catcher

Version < 0.64

References

{
    "lastseen": "",
    "description": "AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, an integer underflow vulnerability exists in the MQTT parsing logic of AIS-catcher. This vulnerability allows an attacker to trigger a massive Heap Buffer Overflow by sending a malformed MQTT packet with a manipulated Topic Length field. This leads to an immediate Denial of Service (DoS) and, when used as a library, severe Memory Corruption that can be leveraged for Remote Code Execution (RCE). This issue has been patched in version 0.64.",
    "published": "2025-11-29T01:57:52.613Z",
    "modified": "2025-11-29T01:57:52.613Z",
    "type": "cve",
    "title": "AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow",
    "source": "GitHub_M",
    "references": "https://github.com/jvde-github/AIS-catcher/security/advisories/GHSA-93mj-c8q3-69rg\nhttps://github.com/jvde-github/AIS-catcher/commit/e0f7242eee659909adc11a4c561c3f7011bdefe7",
    "id": "CVE-2025-66217",
    "bulletinFamily": "",
    "cwe": [
        "CWE-122",
        "CWE-191"
    ],
    "cvelist": null,
    "sourceData": "jvde-github AIS-catcher < 0.64",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "AIS-catcher",
    "version": "< 0.64",
    "vendor": "jvde-github",
    "ai_description": "Integer underflow vulnerability in MQTT parsing logic leading to Heap Buffer Overflow and potential Remote Code Execution (RCE)",
    "ai_severity": "High",
    "ai_vendor": "jvde-github",
    "ai_product": "AIS-catcher",
    "ai_version": "< 0.64",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply