Buffer Overflow Vulnerability in PCSX2 Emulator Software by PCSX2
CVE-2025-49589

6.1MEDIUM

Key Information:

Vendor: Pcsx2
Status: Pcsx2
Vendor: CVE Published:; 12 June 2025

What is CVE-2025-49589?

A stack-based buffer overflow has been identified in the Kprintf_HLE function of the PCSX2 emulator, found in versions up to 2.3.414. This vulnerability arises when a user opens a disc image that logs a specially crafted message while IOP Console Logging is enabled. An attacker could exploit this flaw to execute arbitrary code remotely, compromising the user's system. The vulnerability has been addressed in the release of version 2.3.414.

Affected Version(s)

pcsx2 < 2.3.414

References

https://github.com/PCSX2/pcsx2/security/advisories/GHSA-f...

x_refsource_CONFIRM

https://github.com/PCSX2/pcsx2/pull/12823

x_refsource_MISC

https://github.com/PCSX2/pcsx2/pull/12826

x_refsource_MISC

CVSS V4

Score:

6.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 12, 2025
Vulnerability Reserved
Jun 6, 2025

Pcsx2

What is CVE-2025-49589?

Affected Version(s)

References

CVSS V4

Timeline