Medium severity6.2NVD Advisory· Published Mar 30, 2026· Updated Apr 8, 2026
CVE-2019-25653
CVE-2019-25653
Description
Navicat for Oracle 12.1.15 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the password field. Attackers can paste a buffer of 550 repeated characters into the password parameter during Oracle connection configuration to trigger an application crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:navicat:navicat_for_oracle:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:navicat:navicat_for_oracle:*:*:*:*:*:*:*:*range: <=12.1.15
- (no CPE)range: 12.1.15
Patches
Vulnerability mechanics
References
4- www.exploit-db.com/exploits/46383nvdExploitVDB Entry
- www.vulncheck.com/advisories/navicat-for-oracle-password-field-denial-of-servicenvdThird Party Advisory
- www.navicat.com/es/nvdProduct
- www.navicat.com/es/download/navicat-for-oraclenvdProduct
News mentions
0No linked articles in our index yet.