CVE-2025-67125 — MEDIUM (4.4)

Vulnerability Description

A signed integer overflow in docopt.cpp v0.6.2 (LeafPattern::match in docopt_private.h) when merging occurrence counters (e.g., default LONG_MAX + first user "-v/--verbose") can cause counter wrap (negative/unbounded semantics) and lead to logic/policy bypass in applications that rely on occurrence-based limits, rate-gating, or safety toggles. In hardened builds (e.g., UBSan or -ftrapv), the overflow may also result in process abort (DoS).

CVSS Score

4.4

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Docopt	Docopt.Cpp	0.6.2

Related Weaknesses (CWE)

CWE-190

References

https://gist.github.com/thesmartshadow/672afe8828844c833f46f8ebe2f5f3bdExploitThird Party Advisory
https://github.com/docopt/docopt.cppProduct

FAQ

What is CVE-2025-67125?

CVE-2025-67125 is a vulnerability with a CVSS score of 4.4 (MEDIUM). A signed integer overflow in docopt.cpp v0.6.2 (LeafPattern::match in docopt_private.h) when merging occurrence counters (e.g., default LONG_MAX + first user "-v/--verbose") can cause counter wrap (ne...

How severe is CVE-2025-67125?

CVE-2025-67125 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-67125?

Check the references section above for vendor advisories and patch information. Affected products include: Docopt Docopt.Cpp.