CVE-2025-1587 — MEDIUM (5.3)

Vulnerability Description

A vulnerability was found in SourceCodester Telecom Billing Management System 1.0. It has been rated as critical. This issue affects the function addrecords of the file main.cpp of the component Add New Record. The manipulation of the argument name/phonenumber leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Razormist	Telecom Billing Management System	1.0

Related Weaknesses (CWE)

CWE-120 CWE-119

References

https://github.com/wshRE/CVE/issues/1ExploitIssue TrackingThird Party Advisory
https://vuldb.com/?ctiid.296567Permissions RequiredVDB Entry
https://vuldb.com/?id.296567Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.505363Third Party AdvisoryVDB Entry
https://www.sourcecodester.com/Product

FAQ

What is CVE-2025-1587?

CVE-2025-1587 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability was found in SourceCodester Telecom Billing Management System 1.0. It has been rated as critical. This issue affects the function addrecords of the file main.cpp of the component Add N...

How severe is CVE-2025-1587?

CVE-2025-1587 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-1587?

Check the references section above for vendor advisories and patch information. Affected products include: Razormist Telecom Billing Management System.