Buffer Overflow in OpenVM Framework Affects Customization and Extensibility
CVE-2025-46723

7.8HIGH

Key Information:

Vendor

Openvm-org

Status
Openvm
Vendor
CVE Published:
2 May 2025

What is CVE-2025-46723?

The OpenVM framework suffers from a buffer overflow vulnerability due to inadequate range checking of the program counter during byte decomposition in the AUIPC instruction. A typo allows the highest limb of the program counter to be checked against an 8-bit range instead of the correct 6-bit range. As a result, the if condition that should perform a necessary operation is never triggered, leading to discrepancies in the pc_limbs decomposition. This flaw enables a malicious actor to manipulate the destination register to a value different from what the AUIPC instruction specifies, particularly affecting the BabyBear field. This issue was resolved in version 1.1.0.

Affected Version(s)

openvm = 1.0.0

References

https://github.com/openvm-org/openvm/security/advisories/...
x_refsource_CONFIRM
https://github.com/openvm-org/openvm/commit/68da4b50c033d...
x_refsource_MISC
https://cantina.xyz/code/c486d600-bed0-4fc6-aed1-de759fd2...
x_refsource_MISC

CVSS V4

Score:
7.8
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.