Access of Memory Location After End of Buffer

CVE-2025-43580

Medium

5.5/10

Summary

Audition versions 25.2, 24.6.3 and earlier are affected by an Access of Memory Location After End of Buffer vulnerability that could result in application denial-of-service. An attacker could leverage this vulnerability to crash the application or disrupt its functionality. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-788 - Access of Memory Location After End of Buffer

The software reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.

References

Advisory Timeline

Published Jul 08, 2025

Access of Memory Location After End of Buffer

CVE-2025-43580

Summary

CWE-788 - Access of Memory Location After End of Buffer

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS