CVE 10 CRITICAL

Integer Overflow in Robocode’s Buffer Write Method_CVE-2025-14308

December 9, 2025 invoker category_cve

10 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:Y/R:U/V:D/RE:M/U:Red

Description

An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data being written, allowing attackers to cause an overflow, potentially leading to buffer overflows and arbitrary code execution. This vulnerability can be exploited by submitting specially crafted inputs that manipulate the data length, leading to potential unauthorized code execution.

AI Analysis

Integer overflow vulnerability in Robocode's Buffer class

Basic Information

ID CVE-2025-14308

Source GovTech CSG

Published Dec 9, 2025 at 07:44

Affected Product

Vendor Robocode Project

Product Robocode

Version 1.9.3.6

Affected Versions Robocode Project Robocode 1.9.3.6

CWE Classification

CWE-190

AI Assessment

AI Score 10 / 10

AI Severity Critical

Vendor Robocode Project

Product Robocode

Version 1.9.3.6

References

github.com /robo-code/robocode/pull/70

{
    "lastseen": "",
    "description": "An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data being written, allowing attackers to cause an overflow, potentially leading to buffer overflows and arbitrary code execution. This vulnerability can be exploited by submitting specially crafted inputs that manipulate the data length, leading to potential unauthorized code execution.",
    "published": "2025-12-09T07:44:34.003Z",
    "modified": "2025-12-09T07:44:34.003Z",
    "type": "cve",
    "title": "Integer Overflow in Robocode's Buffer Write Method",
    "source": "GovTech CSG",
    "references": "https://github.com/robo-code/robocode/pull/70",
    "id": "CVE-2025-14308",
    "bulletinFamily": "",
    "cwe": [
        "CWE-190"
    ],
    "cvelist": null,
    "sourceData": "Robocode Project Robocode 1.9.3.6",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:Y/R:U/V:D/RE:M/U:Red",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Robocode",
    "version": "1.9.3.6",
    "vendor": "Robocode Project",
    "ai_description": "Integer overflow vulnerability in Robocode's Buffer class",
    "ai_severity": "Critical",
    "ai_vendor": "Robocode Project",
    "ai_product": "Robocode",
    "ai_version": "1.9.3.6",
    "ai_score": 10
}

💭 Join the Security Discussion ❌ Cancel Reply