VYPR
Unrated severityNVD Advisory· Published Feb 20, 2026· Updated Apr 7, 2026

Sricam DeviceViewer 3.12.0.1 Local Buffer Overflow DEP Bypass

CVE-2019-25435

Description

Sricam DeviceViewer 3.12.0.1 contains a local buffer overflow vulnerability in the user management add user function that allows authenticated attackers to execute arbitrary code by bypassing data execution prevention. Attackers can inject a malicious payload through the Username field in User Management to trigger a stack-based buffer overflow and execute commands via ROP chain gadgets.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.