CVE-2025-14308 Affecting robocode package, versions *
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-DEBIAN12-ROBOCODE-14287103
- published10 Dec 2025
- disclosed9 Dec 2025
Introduced: 9 Dec 2025
NewCVE-2025-14308 (opens in a new tab)How to fix?
There is no fixed version for Debian:12 robocode.
NVD Description
Note: Versions mentioned in the description apply only to the upstream robocode package and not the robocode package as distributed by Debian.
See How to fix? for Debian:12 relevant fixed versions and status.
An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data being written, allowing attackers to cause an overflow, potentially leading to buffer overflows and arbitrary code execution. This vulnerability can be exploited by submitting specially crafted inputs that manipulate the data length, leading to potential unauthorized code execution.