CVE-2025-14307 Affecting robocode package, versions *
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-DEBIANUNSTABLE-ROBOCODE-14287100
- published10 Dec 2025
- disclosed9 Dec 2025
Introduced: 9 Dec 2025
NewCVE-2025-14307 (opens in a new tab)How to fix?
There is no fixed version for Debian:unstable robocode.
NVD Description
Note: Versions mentioned in the description apply only to the upstream robocode package and not the robocode package as distributed by Debian.
See How to fix? for Debian:unstable relevant fixed versions and status.
An insecure temporary file creation vulnerability exists in the AutoExtract component of Robocode version 1.9.3.6. The createTempFile method fails to securely create temporary files, allowing attackers to exploit race conditions and potentially execute arbitrary code or overwrite critical files. This vulnerability can be exploited by manipulating the temporary file creation process, leading to potential unauthorized actions.