CVE-2025-1187
Published: 12 February 2025
Summary
CVE-2025-1187 is a medium-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Code-Projects Police Fir Record Management System. Its CVSS base score is 5.3 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 24.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
SI-2 requires identifying, reporting, and correcting flaws like this stack-based buffer overflow in the Delete Record Handler, directly eliminating the vulnerability through patching or replacement.
SI-10 enforces validation of inputs to the Delete Record Handler, preventing the manipulation that triggers the stack-based buffer overflow.
SI-16 implements memory protections such as stack canaries, ASLR, and DEP to safeguard against exploitation of the stack-based buffer overflow even if triggered.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The stack-based buffer overflow vulnerability in the Delete Record Handler of the Police FIR Record Management System enables local exploitation for arbitrary code execution, facilitating privilege escalation.
NVD Description
A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a…
more
requirement. The exploit has been disclosed to the public and may be used.
Deeper analysisAI
CVE-2025-1187 is a critical stack-based buffer overflow vulnerability affecting an unknown functionality within the Delete Record Handler component of the Police FIR Record Management System version 1.0, available from code-projects.org. Published on 2025-02-12, the issue is linked to CWEs-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), CWE-121 (Stack-based Buffer Overflow), and CWE-787 (Out-of-bounds Write), with a CVSS v3.1 base score of 5.3 (AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L).
Exploitation requires local access (AV:L) by an attacker with low privileges (PR:L), low attack complexity (AC:L), and no user interaction (UI:N). Manipulation of the vulnerable component can trigger the stack-based buffer overflow, potentially leading to low-level impacts on confidentiality, integrity, and availability.
Advisories referenced in VulDB entries (ctiid.295093, id.295093, submit.495921) and a GitHub repository document the vulnerability, noting that the exploit has been publicly disclosed and may be used. No patches or specific mitigations are mentioned in the provided details.
Details
- CWE(s)