VYPR
Medium severity6.2NVD Advisory· Published Mar 21, 2026· Updated Apr 15, 2026

CVE-2019-25572

CVE-2019-25572

Description

NordVPN 6.19.6 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the email input field. Attackers can paste a buffer of 100,000 characters into the email field during login to trigger an application crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nordvpn/Nordvpn2 versions
    cpe:2.3:a:nordvpn:nordvpn:*:*:*:*:*:windows:*:*+ 1 more
    • cpe:2.3:a:nordvpn:nordvpn:*:*:*:*:*:windows:*:*range: <=6.19.6
    • (no CPE)range: = 6.19.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.