CVE-2019-25435 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Sricam DeviceViewer 3.12.0.1 contains a local buffer overflow vulnerability in the user management add user function that allows authenticated attackers to exec…
High CVSS: 8.4

CVE-2019-25435

Sricam DeviceViewer 3.12.0.1 contains a local buffer overflow vulnerability in the user management add user function that allows authenticated attackers to execute arbitrary code by bypassing data execution prevention. Attackers can inject a malicious payload through the Username field in User Management to trigger a stack-based buffer overflow and execute commands via ROP chain gadgets.
Vendor
Sricam
Product
Deviceviewer
CWE
CWE-121
Yayın Tarihi
2026-02-20 23:16:00
Güncelleme
2026-02-26 02:33:51
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-121 Deviceviewer HIGH Sricam 2026

Referanslar

https://www.exploit-db.com/exploits/47477 https://www.sricam.com/ https://www.vulncheck.com/advisories/sricam-deviceviewer-local-buffer-overflow-dep-bypass