{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-69720", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-24T01:06:56.021Z", "dateReserved": "2026-01-09T00:00:00.000Z", "datePublished": "2026-03-19T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-19T14:52:32.368Z"}, "descriptions": [{"lang": "en", "value": "ncurses v6.5 and v6.4 are vulnerable to Buffer Overflow in progs/infocmp.c, function analyze_string()."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://marc.info/?l=ncurses-bug&m=176539968328570&w=2"}, {"url": "https://marc.info/?l=ncurses-bug&m=176540731801330&w=2"}, {"url": "https://marc.info/?l=ncurses-bug&m=176545557728083&w=2"}, {"url": "https://github.com/Cao-Wuhui/CVE-2025-69720"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-120", "lang": "en", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-24T01:05:11.996191Z", "id": "CVE-2025-69720", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-24T01:06:56.021Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-69720", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-24T01:05:11.996191Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-120", "description": "CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-24T01:06:48.727Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://marc.info/?l=ncurses-bug&m=176539968328570&w=2"}, {"url": "https://marc.info/?l=ncurses-bug&m=176540731801330&w=2"}, {"url": "https://marc.info/?l=ncurses-bug&m=176545557728083&w=2"}, {"url": "https://github.com/Cao-Wuhui/CVE-2025-69720"}], "descriptions": [{"lang": "en", "value": "ncurses v6.5 and v6.4 are vulnerable to Buffer Overflow in progs/infocmp.c, function analyze_string()."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-19T14:52:32.368Z"}}}, "cveMetadata": {"cveId": "CVE-2025-69720", "state": "PUBLISHED", "dateUpdated": "2026-03-24T01:06:56.021Z", "dateReserved": "2026-01-09T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-19T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "ncurses v6.5 and v6.4 are vulnerable to Buffer Overflow in progs/infocmp.c, function analyze_string()."}, {"lang": "es", "value": "ncurses v6.5 y v6.4 son vulnerables a desbordamiento de b\u00fafer en progs/infocmp.c, funci\u00f3n analyze_string()."}], "id": "CVE-2025-69720", "lastModified": "2026-03-24T02:16:04.193", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-19T15:16:21.293", "references": [{"source": "cve@mitre.org", "url": "https://github.com/Cao-Wuhui/CVE-2025-69720"}, {"source": "cve@mitre.org", "url": "https://marc.info/?l=ncurses-bug&m=176539968328570&w=2"}, {"source": "cve@mitre.org", "url": "https://marc.info/?l=ncurses-bug&m=176540731801330&w=2"}, {"source": "cve@mitre.org", "url": "https://marc.info/?l=ncurses-bug&m=176545557728083&w=2"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{"bugzilla": {"description": "ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.", "id": "2449037", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449037"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.3", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H", "status": "draft"}, "cwe": "CWE-120", "details": ["A flaw was found in ncurses. This vulnerability, a buffer overflow, exists within the `analyze_string()` function. An attacker could potentially exploit this to execute unauthorized code on the affected system, which might lead to a denial of service in the affected application, the corruption of data, or sensitive information being revealed to an attacker."], "name": "CVE-2025-69720", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Affected", "package_name": "ncurses", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "ncurses", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "ncurses", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "ncurses", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "ncurses", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "rhcos", "product_name": "Red Hat OpenShift Container Platform 4"}], "public_date": "2026-03-19T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2025-69720\nhttps://nvd.nist.gov/vuln/detail/CVE-2025-69720\nhttps://github.com/Cao-Wuhui/CVE-2025-69720\nhttps://marc.info/?l=ncurses-bug&m=176539968328570&w=2\nhttps://marc.info/?l=ncurses-bug&m=176540731801330&w=2\nhttps://marc.info/?l=ncurses-bug&m=176545557728083&w=2"], "threat_severity": "Moderate"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,6.5]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "ncurses", "vendor": "gnu"}], "analysis": {"en": {"generated_at": "2026-03-24T03:28:58.218518+00:00", "value": {"mitigation_remediation": ["Upgrade ncurses to the latest patched version (6.6 or newer) once it is released by the maintainer or by your operating system vendor. ", "If an immediate upgrade is not possible, restrict or disable use of the infocmp utility until a patch is available. ", "Monitor system logs for attempts to execute the infocmp command with unusual or large inputs and block suspicious activity at the firewall or SELinux level. ", "Keep the operating system and related libraries updated, and review vendor advisories for any re\u2011release of ncurses with this fix."], "summary": {"action": "Immediate Patch", "impact": "Arbitrary code execution via buffer overflow"}, "threat_synthesis": {"affected_systems": "The vulnerability affects systems running ncurses 6.4 and 6.5, which is commonly bundled in Unix\u2011like operating systems and used by terminal handling libraries. No specific vendor or product name is provided, but the issue impacts all installations of these ncurses releases that use the infocmp utility.", "description_and_impact": "A buffer overflow exists in the analyze_string() function of ncurses version 6.4 and 6.5, located in progs/infocmp.c. The flaw allows a crafted input to overflow a buffer and overwrite adjacent memory, which can lead to arbitrary code execution. This weakness is classified as CWE-120, a classic buffer overflow issue that can compromise confidentiality, integrity, and availability of the affected system.", "risk_and_exploitability": "The CVSS score of 9.8 classifies this bug as critical, while the EPSS score indicates a low probability of exploitation in the near term. This vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the attack vector requires the ability to supply input to the infocmp program, which could be local or remotely triggered if the program is exposed to untrusted user data. No known public exploit exists at this time, but the potential for remote code execution makes it a high\u2011priority risk."}}}}, "created": "2026-03-20T08:58:08.933050+00:00", "updated": "2026-03-25T11:51:47.294592+00:00", "vendors": ["gnu", "gnu$PRODUCT$ncurses"]}