CVE-2025-34449

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the sc_device_msg_deserialize() function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-service condition. This vulnerability may allow further exploitation on the host system.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/Genymobile/scrcpy/commit/3e40b24	Patch
https://github.com/Genymobile/scrcpy/issues/6415	Exploit Issue Tracking Patch
https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-003-scrcpy-global-buffer-overflow.md	Exploit Third Party Advisory
https://www.vulncheck.com/advisories/genymobile-scrcpy-global-buffer-overflow	Third Party Advisory
https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-003-scrcpy-global-buffer-overflow.md	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:genymotion:scrcpy:*:*:*:*:*:*:*:*

History

03 Jan 2026, 21:15

Type	Values Removed	Values Added
CWE	~~CWE-119~~

31 Dec 2025, 17:43

Type	Values Removed	Values Added
First Time		Genymotion scrcpy Genymotion
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1
CPE		cpe:2.3:a:genymotion:scrcpy::::::::
CWE		CWE-502
References	~~() https://github.com/Genymobile/scrcpy/commit/3e40b24 -~~	() https://github.com/Genymobile/scrcpy/commit/3e40b24 - Patch
References	~~() https://github.com/Genymobile/scrcpy/issues/6415 -~~	() https://github.com/Genymobile/scrcpy/issues/6415 - Exploit, Issue Tracking, Patch
References	~~() https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-003-scrcpy-global-buffer-overflow.md -~~	() https://github.com/marlinkcyber/advisories/blob/main/advisories/MCSAID-2025-003-scrcpy-global-buffer-overflow.md - Exploit, Third Party Advisory
References	~~() https://www.vulncheck.com/advisories/genymobile-scrcpy-global-buffer-overflow -~~	() https://www.vulncheck.com/advisories/genymobile-scrcpy-global-buffer-overflow - Third Party Advisory

22 Dec 2025, 18:16

Type	Values Removed	Values Added
Summary	(en) Genymobile/scrcpy versions up to and including 3.3.3 and prior to commit 3e40b24 contain a global buffer overflow vulnerability in the function sc_read32be, invoked via sc_device_msg_deserialize() and process_msgs(). Processing crafted device messages can cause reads beyond the bounds of a global buffer, leading to memory corruption or crashes. This vulnerability can be exploited to cause a denial of service and, under certain conditions, may be leveraged for further exploitation depending on the execution environment and available mitigations.	(en) Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the sc_device_msg_deserialize() function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-service condition. This vulnerability may allow further exploitation on the host system.

18 Dec 2025, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-12-18 22:15

Updated : 2026-01-03 21:15

NVD link : CVE-2025-34449

Mitre link : CVE-2025-34449

CVE.ORG link : CVE-2025-34449

JSON object : View

Products Affected

genymotion

scrcpy

CWE

CWE-502

Deserialization of Untrusted Data

9.1 /10