VYPR
Vendor

Aidex

Products
5
CVEs
7
Across products
7
Status
Private

Products

5

Recent CVEs

7
  • CVE-2025-3579CriApr 15, 2025
    risk 0.60cvss epss 0.01

    In versions prior to Aidex 1.7, an authenticated malicious user, taking advantage of an open registry, could execute unauthorised commands within the system. This includes executing operating system (Unix) commands, interacting with internal services such as PHP or MySQL, and…

  • CVE-2025-3578CriApr 15, 2025
    risk 0.60cvss epss 0.00

    A malicious, authenticated user in Aidex, versions prior to 1.7, could list credentials of other users, create or modify existing users in the application, list credentials of users in production or development environments. In addition, it would be possible to cause bugs that…

  • CVE-2024-26507HigJun 10, 2024
    risk 0.51cvss 7.8epss 0.00

    An issue in FinalWire AIRDA Extreme, AIDA64 Engineer, AIDA64 Business, AIDA64 Network Audit v.7.00.6700 and before allows a local attacker to escalate privileges via the DeviceIoControl call associated with MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or…

  • CVE-2006-6855Dec 31, 2006
    risk 0.03cvss epss 0.03

    AIDeX Mini-WebServer 1.1 early release 3 allows remote attackers to cause a denial of service (daemon crash) via a flood of HTTP GET requests, possibly related to display of HTTP log data by the GUI. NOTE: some of these details are obtained from third party information.

  • CVE-2019-25631Mar 24, 2026
    risk 0.00cvss epss 0.00

    AIDA64 Business 5.99.4900 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH pointers with malicious shellcode. Attackers can inject egg hunter shellcode through the SMTP display name…

  • CVE-2019-25360Feb 18, 2026
    risk 0.00cvss epss 0.01

    Aida64 Engineer 6.10.5200 contains a buffer overflow vulnerability in the CSV logging configuration that allows attackers to execute malicious code by crafting a specially designed payload. Attackers can exploit the vulnerability by creating a malformed log file with carefully…

  • CVE-2019-7244Mar 25, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in kerneld.sys in AIDA64 before 5.99. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x80112084 and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of…