High severity7.8NVD Advisory· Published Mar 22, 2026· Updated Apr 16, 2026

CVE-2019-25612

Description

Admin Express 1.2.5.485 contains a local structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an alphanumeric encoded payload in the Folder Path field. Attackers can trigger the vulnerability through the System Compare feature by pasting a crafted buffer overflow payload into the left-hand side Folder Path field and clicking the scale icon to execute shellcode with application privileges.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

admin-express.en.softonic.comnvd
admin-express.en.softonic.com/downloadnvd
www.exploit-db.com/exploits/46805nvd
www.vulncheck.com/advisories/admin-express-local-seh-buffer-overflow-via-folder-pathnvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000