CVE-2025-67125 – This CVE describes a signed integer overflow vu... (How to Fix)

Q: What is the severity of CVE-2025-67125?

CVE-2025-67125 has a CVSS score of 4.4 (MEDIUM). This CVE describes a signed integer overflow vulnerability in docopt.cpp v0.6.2 that occurs when merging occurrence counters. Attackers can bypass logic/policy controls in applications that rely on occurrence-based limits, potentially allowing them to exceed rate limits or safety restrictions. Applications using the affected docopt.cpp library for command-line argument parsing with occurrence counters are vulnerable.

📋 TL;DR

This CVE describes a signed integer overflow vulnerability in docopt.cpp v0.6.2 that occurs when merging occurrence counters. Attackers can bypass logic/policy controls in applications that rely on occurrence-based limits, potentially allowing them to exceed rate limits or safety restrictions. Applications using the affected docopt.cpp library for command-line argument parsing with occurrence counters are vulnerable.

💻 Affected Systems

Products:

docopt.cpp

Versions: Version 0.6.2 specifically

Operating Systems: All platforms where docopt.cpp is used

Default Config Vulnerable: ⚠️ Yes

Notes: Only applications that use occurrence counters (like -v/--verbose with counting) are vulnerable. Simple boolean flags or single-occurrence arguments are not affected.

📦 What is this software?

Docopt.cpp by Docopt

View all CVEs affecting Docopt.cpp →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete bypass of application security controls, allowing unlimited command execution, privilege escalation, or circumvention of safety mechanisms designed to limit user actions.

🟠

Likely Case

Bypass of rate limiting or usage restrictions in applications that use occurrence counters for command-line arguments, potentially allowing users to exceed intended limits.

🟢

If Mitigated

Minimal impact if applications don't use occurrence counters or have additional validation layers beyond the library's counting mechanism.

🌐 Internet-Facing: MEDIUM - Applications exposed to untrusted command-line input could be exploited, but requires specific usage patterns and attacker knowledge of the application's argument structure.

🏢 Internal Only: LOW - Internal tools using the library would typically be used by trusted users with less motivation to bypass controls.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires understanding of the target application's argument structure and usage of occurrence counters. The gist reference shows technical details but not a complete weaponized exploit.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 0.6.3 or later

Vendor Advisory: https://github.com/docopt/docopt.cpp

Restart Required: Yes

Instructions:

1. Check current docopt.cpp version in your project. 2. Update to version 0.6.3 or later via package manager or direct update. 3. Recompile and rebuild your application. 4. Restart affected services.

🔧 Temporary Workarounds

Disable occurrence counters

all

Modify application code to avoid using occurrence counters for command-line arguments

Modify source code to use boolean flags instead of counting occurrences

Input validation wrapper

all

Add pre-parsing validation to limit argument counts before passing to docopt.cpp

Implement custom argument validation that checks counts before docopt parsing

🧯 If You Can't Patch

Implement application-level validation of argument counts after parsing
Use compiler hardening options like -ftrapv to crash on overflow (trading DoS for security bypass)

🔍 How to Verify

Check if Vulnerable:

Check if your application uses docopt.cpp version 0.6.2 and uses occurrence counters (arguments that can appear multiple times with counting semantics)

Check Version:

Check your build system or package manager for docopt.cpp version, or examine the library header files for version information

Verify Fix Applied:

Verify docopt.cpp version is 0.6.3 or later and test that occurrence counters now properly handle maximum values

📡 Detection & Monitoring

Log Indicators:

Unexpected high counts of command-line arguments
Application errors related to integer overflow or argument parsing

Network Indicators:

N/A - This is a local command-line parsing vulnerability

SIEM Query:

Look for process execution logs with unusually high repetition of command-line flags or arguments

📊 Metadata

CVE ID: CVE-2025-67125

CVSS v3 Score: 4.4 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

CWE: CWE-190

EPSS Score: 0.01% exploit probability (0.2th percentile)

Published: January 23, 2026

Last Updated: February 11, 2026

🔗 References

https://gist.github.com/thesmartshadow/672afe8828844c833f46f8ebe2f5f3bd Exploit,Third Party Advisory
https://github.com/docopt/docopt.cpp Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-67125, you might also want to check these: