CVE-2019-25679

HIGH SEVERITY

CVSS Score & Metrics

Base Score

7.8 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H                                    

Vulnerability Description

RealTerm Serial Terminal 2.0.0.70 contains a structured exception handling (SEH) buffer overflow vulnerability in the Echo Port tab that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a buffer overflow payload with a POP POP RET gadget chain and shellcode that triggers code execution when pasted into the Port field and the Change button is clicked.

Vulnerability Details

Published Date

April 05, 2026

Last Modified

April 07, 2026

CWE ID

CWE-787

Source

NVD

Vendor

Realterm

Product

RealTerm: Serial Terminal

External References

https://realterm.sourceforge.io/
https://sourceforge.net/projects/realterm/files/
https://www.exploit-db.com/exploits/46441
https://www.vulncheck.com/advisories/realterm-serial-terminal-buffer-overflow-seh

CVE-2019-25679

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment