{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/94823?format=json","vulnerability_id":"VCID-p3bz-1qpk-4qb7","summary":"Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 3","aliases":[{"alias":"CVE-2025-66043"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25966?format=json","purl":"pkg:deb/debian/biosig@3.9.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.5-1%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25964?format=json","purl":"pkg:deb/debian/biosig@2.1.2-4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11m8-t2pq-gffq"},{"vulnerability":"VCID-19gb-bcj9-h3ek"},{"vulnerability":"VCID-1e8a-pecv-mban"},{"vulnerability":"VCID-1qtv-8gfn-k3d5"},{"vulnerability":"VCID-22j4-jvrz-37an"},{"vulnerability":"VCID-3q5d-53f1-mbeg"},{"vulnerability":"VCID-439v-uybe-ukee"},{"vulnerability":"VCID-4gz7-zkd7-rbfy"},{"vulnerability":"VCID-4u19-2qf4-wuda"},{"vulnerability":"VCID-4y8e-k1jm-8ua7"},{"vulnerability":"VCID-5gg7-wyxc-j7ej"},{"vulnerability":"VCID-681v-k6xq-ebc3"},{"vulnerability":"VCID-6a53-kzbe-dfen"},{"vulnerability":"VCID-6gfn-fcbc-13gh"},{"vulnerability":"VCID-89p2-5f2s-pbb3"},{"vulnerability":"VCID-8vtz-crwx-mqcq"},{"vulnerability":"VCID-8z6c-7hq3-nfgg"},{"vulnerability":"VCID-apaq-dbph-5bcs"},{"vulnerability":"VCID-btax-7kvz-yygu"},{"vulnerability":"VCID-f8rc-qyyv-7be1"},{"vulnerability":"VCID-fej6-3865-qqem"},{"vulnerability":"VCID-gkpy-a414-9fe2"},{"vulnerability":"VCID-gz43-h6pk-eugg"},{"vulnerability":"VCID-jabx-j5c6-xkdc"},{"vulnerability":"VCID-jfpq-yp9d-w3fq"},{"vulnerability":"VCID-meyh-jfdn-qygx"},{"vulnerability":"VCID-murc-rk4g-97cj"},{"vulnerability":"VCID-nuze-px6m-mkcx"},{"vulnerability":"VCID-p3bz-1qpk-4qb7"},{"vulnerability":"VCID-p3zj-6f8a-4qgp"},{"vulnerability":"VCID-pk32-xmmu-syca"},{"vulnerability":"VCID-q9k5-8vt9-bfgz"},{"vulnerability":"VCID-qmv4-87m2-3qc2"},{"vulnerability":"VCID-ragy-pr9p-37fc"},{"vulnerability":"VCID-rats-fhv4-r7hd"},{"vulnerability":"VCID-rxa5-81m8-hfas"},{"vulnerability":"VCID-t5ng-z1ef-m7ak"},{"vulnerability":"VCID-v195-uuwb-y7bj"},{"vulnerability":"VCID-w1pe-d7h1-2fby"},{"vulnerability":"VCID-w2bv-6vtb-sbh6"},{"vulnerability":"VCID-xdbg-fgen-nbds"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.1.2-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/25965?format=json","purl":"pkg:deb/debian/biosig@2.5.0-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11m8-t2pq-gffq"},{"vulnerability":"VCID-19gb-bcj9-h3ek"},{"vulnerability":"VCID-1e8a-pecv-mban"},{"vulnerability":"VCID-1qtv-8gfn-k3d5"},{"vulnerability":"VCID-22j4-jvrz-37an"},{"vulnerability":"VCID-3q5d-53f1-mbeg"},{"vulnerability":"VCID-439v-uybe-ukee"},{"vulnerability":"VCID-4gz7-zkd7-rbfy"},{"vulnerability":"VCID-4u19-2qf4-wuda"},{"vulnerability":"VCID-4y8e-k1jm-8ua7"},{"vulnerability":"VCID-5gg7-wyxc-j7ej"},{"vulnerability":"VCID-681v-k6xq-ebc3"},{"vulnerability":"VCID-6a53-kzbe-dfen"},{"vulnerability":"VCID-6gfn-fcbc-13gh"},{"vulnerability":"VCID-89p2-5f2s-pbb3"},{"vulnerability":"VCID-8vtz-crwx-mqcq"},{"vulnerability":"VCID-8z6c-7hq3-nfgg"},{"vulnerability":"VCID-apaq-dbph-5bcs"},{"vulnerability":"VCID-btax-7kvz-yygu"},{"vulnerability":"VCID-f8rc-qyyv-7be1"},{"vulnerability":"VCID-fej6-3865-qqem"},{"vulnerability":"VCID-gkpy-a414-9fe2"},{"vulnerability":"VCID-gz43-h6pk-eugg"},{"vulnerability":"VCID-jabx-j5c6-xkdc"},{"vulnerability":"VCID-jfpq-yp9d-w3fq"},{"vulnerability":"VCID-meyh-jfdn-qygx"},{"vulnerability":"VCID-murc-rk4g-97cj"},{"vulnerability":"VCID-nuze-px6m-mkcx"},{"vulnerability":"VCID-p3bz-1qpk-4qb7"},{"vulnerability":"VCID-p3zj-6f8a-4qgp"},{"vulnerability":"VCID-pk32-xmmu-syca"},{"vulnerability":"VCID-q9k5-8vt9-bfgz"},{"vulnerability":"VCID-qmv4-87m2-3qc2"},{"vulnerability":"VCID-ragy-pr9p-37fc"},{"vulnerability":"VCID-rats-fhv4-r7hd"},{"vulnerability":"VCID-rxa5-81m8-hfas"},{"vulnerability":"VCID-t5ng-z1ef-m7ak"},{"vulnerability":"VCID-v195-uuwb-y7bj"},{"vulnerability":"VCID-w1pe-d7h1-2fby"},{"vulnerability":"VCID-w2bv-6vtb-sbh6"},{"vulnerability":"VCID-xdbg-fgen-nbds"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@2.5.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/25969?format=json","purl":"pkg:deb/debian/biosig@3.9.0-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-11m8-t2pq-gffq"},{"vulnerability":"VCID-1e8a-pecv-mban"},{"vulnerability":"VCID-1qtv-8gfn-k3d5"},{"vulnerability":"VCID-22j4-jvrz-37an"},{"vulnerability":"VCID-3q5d-53f1-mbeg"},{"vulnerability":"VCID-4gz7-zkd7-rbfy"},{"vulnerability":"VCID-4u19-2qf4-wuda"},{"vulnerability":"VCID-4y8e-k1jm-8ua7"},{"vulnerability":"VCID-5gg7-wyxc-j7ej"},{"vulnerability":"VCID-681v-k6xq-ebc3"},{"vulnerability":"VCID-6a53-kzbe-dfen"},{"vulnerability":"VCID-6gfn-fcbc-13gh"},{"vulnerability":"VCID-8vtz-crwx-mqcq"},{"vulnerability":"VCID-f8rc-qyyv-7be1"},{"vulnerability":"VCID-fej6-3865-qqem"},{"vulnerability":"VCID-gkpy-a414-9fe2"},{"vulnerability":"VCID-gz43-h6pk-eugg"},{"vulnerability":"VCID-jabx-j5c6-xkdc"},{"vulnerability":"VCID-jfpq-yp9d-w3fq"},{"vulnerability":"VCID-meyh-jfdn-qygx"},{"vulnerability":"VCID-nuze-px6m-mkcx"},{"vulnerability":"VCID-p3bz-1qpk-4qb7"},{"vulnerability":"VCID-p3zj-6f8a-4qgp"},{"vulnerability":"VCID-pk32-xmmu-syca"},{"vulnerability":"VCID-q9k5-8vt9-bfgz"},{"vulnerability":"VCID-qmv4-87m2-3qc2"},{"vulnerability":"VCID-ragy-pr9p-37fc"},{"vulnerability":"VCID-rxa5-81m8-hfas"},{"vulnerability":"VCID-t5ng-z1ef-m7ak"},{"vulnerability":"VCID-v195-uuwb-y7bj"},{"vulnerability":"VCID-w1pe-d7h1-2fby"},{"vulnerability":"VCID-w2bv-6vtb-sbh6"},{"vulnerability":"VCID-xdbg-fgen-nbds"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/biosig@3.9.0-1%3Fdistro=trixie"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-66043","reference_id":"","reference_type":"","scores":[{"value":"0.00153","scoring_system":"epss","scoring_elements":"0.35783","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-66043"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66043","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66043"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1122863","reference_id":"1122863","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1122863"},{"reference_url":"https://talosintelligence.com/vulnerability_reports/TALOS-2025-2296","reference_id":"TALOS-2025-2296","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-12-11T19:20:40Z/"}],"url":"https://talosintelligence.com/vulnerability_reports/TALOS-2025-2296"}],"weaknesses":[{"cwe_id":121,"name":"Stack-based Buffer Overflow","description":"A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function)."}],"exploits":[],"severity_range_score":"9.8 - 9.8","exploitability":"0.5","weighted_severity":"5.9","risk_score":3.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p3bz-1qpk-4qb7"}