Integer overflow in Robocode
CVE-2025-14308
An integer overflow vulnerability exists in the write method of the Buffer class in Robocode version 1.9.3.6. The method fails to properly validate the length of data being written, allowing attackers to cause an overflow, potentially lead…
Vulnerability class: Integer Overflow
EPSS: 0.005 (38.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Robocode — versions 1.9.3.6
- Robocode Project — versions 1.9.3.6
Weakness classification (CWE)
References
- cve_disclosure@tech.gov.sg (Issue Tracking, Vendor Advisory)
Frequently asked questions
- What is CVE-2025-14308?
- CVE-2025-14308 is a critical-severity vulnerability in Robocode, classified under Integer Overflow or Wraparound. CVSS score: 9.8/10. Published 2025-12-09.
- How severe is CVE-2025-14308?
- Critical severity. CVSS v3 base score is 9.8 out of 10.