Medium severity5.3NVD Advisory· Published Mar 31, 2025· Updated Apr 15, 2026

CVE-2025-3017

Description

A vulnerability, which was classified as critical, has been found in TA-Lib up to 0.6.4. This issue affects the function setInputBuffer of the file src/tools/ta_regtest/ta_test_func/test_minmax.c of the component ta_regtest. The manipulation leads to out-of-bounds write. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The identifier of the patch is 5879180e9070ec35d52948f2f57519713256a0f1. It is recommended to apply a patch to fix this issue.

Patches

5879180e9070

https://github.com/ta-lib/ta-libvia osv

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

github.com/TA-Lib/ta-lib/commit/5879180e9070ec35d52948f2f57519713256a0f1nvd
github.com/TA-Lib/ta-lib/issues/61nvd
github.com/TA-Lib/ta-lib/issues/61nvd
github.com/TA-Lib/ta-lib/pull/62nvd
vuldb.comnvd
vuldb.comnvd
vuldb.comnvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000