High severityNVD Advisory· Published Jul 16, 2025· Updated Apr 15, 2026

CVE-2025-34123

Description

A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when processing a specially crafted .VSC configuration file. The issue occurs due to improper handling of user-supplied data in the XML 'Name' attribute, leading to an SEH overwrite condition. An attacker can exploit this vulnerability by convincing a user to open a malicious .VSC file, resulting in arbitrary code execution under the context of the user.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/videocharge_studio.rbnvd
www.exploit-db.com/exploits/29234nvd
www.vulncheck.com/advisories/video-charge-studio-seh-buffer-overflownvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.016
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000