VYPR
Unrated severityOSV Advisory· Published Dec 18, 2025· Updated Mar 23, 2026

Genymobile/scrcpy <= 3.3.3 Global Buffer Overflow

CVE-2025-34449

Description

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the sc_device_msg_deserialize() function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-service condition. This vulnerability may allow further exploitation on the host system.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Genymobile/ScrcpyOSV2 versions
    v1.0, v1.1, v1.10, …+ 1 more
    • (no CPE)range: v1.0, v1.1, v1.10, …
    • (no CPE)range: <=3.3.3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.