CVE-2025-59418 | THREATINT

Description

BunnyPad is a note taking software. Prior to version 11.0.27000.0915, opening files greater than or equal to 20MB causes buffer overflow to occur. This issue has been patched in version 11.0.27000.0915. Users who wish not to upgrade should refrain from opening files larger than 10MB.

PUBLISHED Reserved 2025-09-15 | Published 2025-09-22 | Updated 2025-09-22 | Assigner GitHub_M

MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Problem types

CWE-770: Allocation of Resources Without Limits or Throttling

Product status

< 11.0.27000.0915

affected

References

github.com/...ad-SRC/security/advisories/GHSA-qhw4-c7x5-vxmj

github.com/...ommit/d9224eb5e13c24ac148a77dff93e53c21f066533

cve.org (CVE-2025-59418)

nvd.nist.gov (CVE-2025-59418)

Download JSON