CVE-2025-11013

A vulnerability was identified in BehaviorTree up to 4.7.0. This vulnerability affects the function XMLParser::PImpl::loadDocImpl of the file /src/xml_parsing.cpp of the component XML Parser. The manipulation leads to null pointer dereference. The attack can only be performed from a local environment. The exploit is publicly available and might be used.

Weakness

The product does not release or incorrectly releases a resource before it is made available for re-use.

Potential Mitigations

• Use a language that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid.
• For example, languages such as Java, Ruby, and Lisp perform automatic garbage collection that releases memory for objects that have been deallocated.

Related Attack Patterns

• https://cwe.mitre.org/data/definitions/125.html
• https://cwe.mitre.org/data/definitions/130.html
• https://cwe.mitre.org/data/definitions/131.html
• https://cwe.mitre.org/data/definitions/494.html
• https://cwe.mitre.org/data/definitions/495.html
• https://cwe.mitre.org/data/definitions/496.html
• https://cwe.mitre.org/data/definitions/666.html

References

• https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1003
• https://github.com/BehaviorTree/BehaviorTree.CPP/pull/1004
• https://github.com/user-attachments/files/22245915/poc.zip
• https://vuldb.com/?ctiid.325956
• https://vuldb.com/?id.325956
• https://vuldb.com/?submit.654075
• https://github.com/BehaviorTree/BehaviorTree.CPP/issues/1003
• https://github.com/user-attachments/files/22245915/poc.zip