miniSphere version 5.2.9 and earlier contains a Integer Overflow vulnerability in layerresize() function in mapengine.c that can result in remote denial of service. This attack appear to be exploitable via the victim must load a specially-crafted map which calls SetLayerSize in its entry script. This vulnerability appears to have been fixed in 5.0.3, 5.1.5, 5.2.10 and later.
{
"unresolved_ranges": [
{
"extracted_events": [
{
"last_affected": "5.2.9"
}
],
"source": "CPE_RANGE",
"vendor_product": "spheredev:minisphere",
"cpes": [
"cpe:2.3:a:spheredev:minisphere:*:*:*:*:*:*:*:*"
]
}
]
}"2026-07-08T14:58:35Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-1000524.json"
[
{
"id": "CVE-2018-1000524-198c9aba",
"digest": {
"function_hash": "170143517028032342080500132422817848451",
"length": 1901.0
},
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/spheredev/neosphere/commit/252c1ca184cb38e1acb917aa0e451c5f08519996",
"deprecated": false,
"target": {
"function": "layer_resize",
"file": "src/minisphere/map_engine.c"
}
},
{
"id": "CVE-2018-1000524-73705c73",
"digest": {
"line_hashes": [
"149958430812384459259757553598581749244",
"9081871458178161176301530231438279178",
"94692261392162295954089957543841421114",
"113177196593337940257210890880753596294",
"239666405935656265764775373556150290491",
"101309720562719714366408607530795296325",
"324061058745041853944051923312819771606",
"111694402351152506158887848947322168459"
],
"threshold": 0.9
},
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/spheredev/neosphere/commit/252c1ca184cb38e1acb917aa0e451c5f08519996",
"deprecated": false,
"target": {
"file": "src/minisphere/map_engine.c"
}
}
]