CVE-2025-66047

Published Dec 11, 2025

Last updated 3 months ago

CVSS critical 9.8

Overview

Description
Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 131
Source
talos-cna@cisco.com
NVD status
Analyzed
Products
libbiosig

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

talos-cna@cisco.com
CWE-121
nvd@nist.gov
CWE-787

Social media

Hype score
Not currently trending

  1. CVE-2025-66047 Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can … https://t.co/WcwIlvcPQB

    @CVEnew

    13 Dec 2025

    220 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. Biosig libbiosig 3.9.1 affected by stack-based buffer overflows (CVE-2025-66047). Update to a patched version to prevent arbitrary code execution via crafted MFER files. https://t.co/YZFyy6TmQ4

    @pulsepatchio

    13 Dec 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. The Biosig Project libbiosig affected by stack buffer overflows (CVE-2025-66047). Malicious MFER files can lead to arbitrary code execution. Update promptly. https://t.co/vr1Khcc06G

    @pulsepatchio

    13 Dec 2025

    2 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. [CVE-2025-66047: CRITICAL] Critical buffer overflow vulnerabilities in libbiosig 3.9.1's MFER parsing. Crafted file can execute arbitrary code. Attackers exploit by providing a file with Tag 131.#cve,CVE-2025-66047,#cybersecurity https://t.co/bLRT8VazhU https://t.co/NBHtwgd0ii

    @CveFindCom

    11 Dec 2025

    62 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 133CVE-2025-66048
  2. Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 67CVE-2025-66046
  3. Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 65CVE-2025-66045
  4. Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 64CVE-2025-66044
  5. Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 3CVE-2025-66043

References

Sources include official advisories and independent security research.