2026-02-04 Daily Vulns
NEW:
| CVE | vendor-product | description | metric | Referenceurl | title | GithubURL | |
|---|---|---|---|---|---|---|---|
| CVE-2019-25232 | NetPCLinker - NetPCLinker | NetPCLinker 1.0.0.0 contains a buffer overflow vulnerability in the Clients Control Panel DNS/IP field that allows attackers to execute arbitrary shellcode. Attackers can craft a malicious payload in the DNS/IP input to overwrite SEH handlers and execute shellcode when adding a new client. | CVSS4.0: 8.4 - HIGH CVSS3.1: 9.8 - CRITICAL | 0 1 2 | Exploitation: pocAutomatable: yesTechnical Impact: total | NetPCLinker 1.0.0.0 - Buffer Overflow | github |
| CVE-2019-25261 | Anydesk - AnyDesk | AnyDesk 5.4.0 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially inject malicious executables. Attackers can exploit the unquoted binary path to place malicious files in service executable locations, potentially gaining elevated system privileges. | CVSS4.0: 8.5 - HIGH CVSS3.1: 7.8 - HIGH | 0 1 2 | Exploitation: pocAutomatable: noTechnical Impact: total | AnyDesk 5.4.0 - Unquoted Service Path | github |
| CVE-2019-19006 | n/a - n/a | Sangoma FreePBX 115.0.16.26 and below, 14.0.13.11 and below, 13.0.197.13 and below have Incorrect Access Control. | CNA n/a CVSS3.1: 9.8 - CRITICAL | 0 1 2 3 | Exploitation: noneAutomatable: yesTechnical Impact: total | undefined | github |
This post is licensed under CC BY 4.0 by the author.