Home / Vulnerability Intelligence / CVE-2019-25691

CVE-2019-25691 - Vulnerability Analysis

HighCVSS: 8.4

Last Updated: April 12, 2026

Faleemi Desktop Software - Buffer Overflow

Published: April 12, 2026Updated: April 12, 2026

Overview

Faleemi Desktop Software 1.8 contains a buffer overflow caused by improper handling of input in the System Setup dialog's Save Path for Snapshot and Record file field, letting local attackers bypass DEP and execute arbitrary code via ROP chain gadgets, exploit requires local access.

Severity & Score

Severity: High

CVSS Score: 8.4

Impact

Local attackers can execute arbitrary code by bypassing DEP protections, potentially leading to full system compromise.

Mitigation

Update to the latest version of Faleemi Desktop Software.

References

https://www.exploit-db.com/exploits/46269
https://www.faleemi.com/
https://www.vulncheck.com/advisories/faleemi-desktop-software-local-buffer-overflow-seh-dep-bypass

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2019-25691
Severity: High
CVSS Score: 8.4
Type: buffer_overflow
Status: new

CWE

CWE-787

CVSS Metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H