CVE-2025-8854
Published: 11 August 2025
Summary
CVE-2025-8854 is a high-severity Classic Buffer Overflow (CWE-120) vulnerability in Bulletphysics Pybullet. Its CVSS base score is 8.4 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked in the top 15.3% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-16 (Memory Protection) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2025-8854 is a stack-based buffer overflow in the LoadOFF function of bulletphysics bullet3 versions prior to 3.26, affecting all platforms. The flaw occurs when processing a crafted OFF file containing an overlong initial token and is reachable through the VHACD test utility or indirectly via PyBullet's vhacd function. It is tracked under CWE-120 and CWE-787 and carries a CVSS 4.0 score of 8.4.
An unauthenticated attacker can supply a malicious OFF file to trigger the overflow, resulting in arbitrary code execution on the target system. The attack requires local access or user interaction to open the file but needs no privileges.
The project repository and associated issue tracker reference the vulnerable code path in Extras/VHACD/test/src/main_vhacd.cpp and indicate the defect was addressed by the 3.26 release.
EPSS remains low and unchanged at 0.0216 with no observed rise after disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-24119
Vulnerability details
Stack-based buffer overflow in LoadOFF in bulletphysics bullet3 before 3.26 on all platforms allows remote attackers to execute arbitrary code via a crafted OFF file with an overlong initial token processed by the VHACD test utility or invoked indirectly through…
more
PyBullet's vhacd function.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Stack-based buffer overflow in bullet3's LoadOFF function (VHACD utility and PyBullet) enables arbitrary code execution via crafted OFF file, facilitating Exploitation for Client Execution.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly mitigates the vulnerability by requiring identification, reporting, and correction of the buffer overflow flaw through upgrading bullet3 to version 3.26 or later.
Provides memory protections such as stack canaries, ASLR, and DEP that prevent arbitrary code execution even if the stack-based buffer overflow occurs during OFF file processing.
Requires validation of information inputs like OFF files to reject crafted files with overlong initial tokens before they reach the vulnerable LoadOFF function.