VYPR
Medium severity5.3NVD Advisory· Published Aug 19, 2025· Updated Jun 17, 2026

CVE-2025-9136

CVE-2025-9136

Description

A flaw has been found in libretro RetroArch 1.18.0/1.19.0/1.20.0. This affects the function filestream_vscanf of the file libretro-common/streams/file_stream.c. This manipulation causes out-of-bounds read. The attack needs to be launched locally. Upgrading to version 1.21.0 mitigates this issue. It is recommended to upgrade the affected component.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Libretro/Retroarchllm-fuzzy2 versions
    1.18.0, 1.19.0, 1.20.0+ 1 more
    • (no CPE)range: 1.18.0, 1.19.0, 1.20.0
    • (no CPE)range: 1.18.0

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.