CVE-2025-4038: code-projects Train Ticket Reservation System reservation stack-based overflow
First published: Mon Apr 28 2025(Updated: )
A vulnerability was found in code-projects Train Ticket Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Train Ticket Reservation System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4038?
CVE-2025-4038 has been declared as a critical severity vulnerability.
What component is affected by CVE-2025-4038?
CVE-2025-4038 affects the Reservation function of the Ticket Reservation component.
What type of vulnerability is CVE-2025-4038?
CVE-2025-4038 is a stack-based buffer overflow vulnerability.
How do I fix CVE-2025-4038?
To fix CVE-2025-4038, update the Train Ticket Reservation System to the latest version that addresses this vulnerability.
What can happen if CVE-2025-4038 is exploited?
Exploitation of CVE-2025-4038 may allow an attacker to execute arbitrary code or crash the application.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/title
- agent/type
- agent/references
- agent/first-publish-date
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/severity
- agent/author
- agent/source
- agent/last-modified-date
- agent/tags
- agent/event
- vendor/code-projects
- canonical/train ticket reservation system