High severity8.8NVD Advisory· Published Feb 12, 2026· Updated Apr 15, 2026

CVE-2019-25318

Description

AVS Audio Converter 9.1.2.600 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by manipulating the output folder text input. Attackers can craft a malicious payload that overwrites stack memory and triggers a bind shell on port 9999 when the 'Browse' button is clicked.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.avs4you.comnvd
www.exploit-db.com/exploits/47788nvd
www.exploit-db.com/exploits/47810nvd
www.vulncheck.com/advisories/avs-audio-converter-stack-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000