CVE-2025-67749 MEDIUM

CVE-2025-67749: PCSX2 has an Out-of-bounds Read due to unchecked offset and size passed to memcpy

Vendor Pcsx2
Product pcsx2
Weakness CWE-125
Published December 12, 2025
Last update December 15, 2025

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

What the vulnerability does

01Description

PCSX2 is a free and open-source PlayStation 2 (PS2) emulator. In versions 2.5.377 and below, an unchecked offset and size used in a memcpy operation inside PCSX2's CDVD SCMD 0x91 and SCMD 0x8F handlers allow a specially crafted disc image or ELF to cause an out-of-bounds read from emulator memory. Because the offset and size is controlled through MG header fields, a specially crafted ELF can read data beyond the bounds of mg_buffer and have it reflected back into emulated memory. This issue is fixed in version 2.5.378.

Key dates

02Disclosure timeline

December 12, 2025 CVE published
December 15, 2025 Record updated