Home

Description

An issue was discovered in mouse07410 asn1c thru 0.9.29 (2025-03-20) - a fork of vlm asn1c. In UPER (Unaligned Packed Encoding Rules), asn1c-generated decoders fail to enforce INTEGER constraints when the bound is positive and exceeds 32 bits in length, potentially allowing incorrect or malicious input to be processed.

PUBLISHED Reserved 2025-08-13 | Published 2025-08-22 | Updated 2025-08-26 | Assigner mitre

References

github.com/mouse07410/asn1c/issues/222

cve.org (CVE-2025-55398)

nvd.nist.gov (CVE-2025-55398)

Download JSON