CVE-2025-4891 is a buffer overflow vulnerability identified in version 1.0 of the code-projects Police Station Management System, specifically within the function criminal::display located in the source.cpp file under the Display Record component. The vulnerability arises from improper handling of the argument 'N' which, when manipulated, causes a buffer overflow condition. This type of vulnerability can lead to memory corruption, potentially allowing an attacker to execute arbitrary code, crash the application, or cause denial of service. The attack vector is local host access with low privileges required, and no user interaction is necessary. The CVSS 4.0 base score is 4.8, indicating a medium severity level, reflecting limited impact on confidentiality, integrity, and availability, and the requirement for local access and privileges. The vulnerability has been publicly disclosed, but no known exploits are currently active in the wild. The absence of patches or mitigation links suggests that a fix may not yet be available, increasing the risk for affected deployments. Given the nature of the Police Station Management System, which likely handles sensitive law enforcement data, exploitation could compromise critical records or disrupt police operations.

For European organizations, particularly law enforcement agencies or government entities using the affected Police Station Management System version 1.0, this vulnerability poses a risk of unauthorized code execution or system instability. Although exploitation requires local access with some privileges, an insider threat or compromised internal workstation could leverage this flaw to escalate privileges or disrupt system availability. This could lead to unauthorized disclosure or modification of sensitive criminal records, undermining investigative processes and public safety. Additionally, disruption of police management systems could delay response times or impair coordination. The medium CVSS score reflects limited remote exploitation potential, but the criticality of the system's function amplifies the operational impact. Organizations in Europe with stringent data protection regulations (e.g., GDPR) could face compliance issues if sensitive data is exposed or integrity compromised.

1. Immediate mitigation should include restricting local access to the Police Station Management System to trusted and authenticated personnel only, minimizing the risk of insider exploitation. 2. Implement strict privilege separation and least privilege principles to ensure users cannot invoke the vulnerable function with manipulated arguments. 3. Monitor and audit local system activity for unusual access patterns or attempts to exploit the display function. 4. If possible, apply input validation or boundary checks on the argument 'N' within the application code to prevent buffer overflow conditions. 5. Engage with the vendor or development community to obtain or develop patches addressing the vulnerability. 6. Consider isolating the affected system within a segmented network zone to limit lateral movement in case of compromise. 7. Conduct security awareness training for users with local access to recognize and report suspicious activity. 8. Prepare incident response plans specific to potential exploitation scenarios involving this system.