What is the CVSS score of CVE-2019-25363?

CVE-2019-25363 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.0%.

Which versions of Wmv To Avi Mpeg Dvd Wmv Convertor are affected by CVE-2019-25363?

A high-severity buffer overflow vulnerability affects Wmv To Avi Mpeg Dvd Wmv Convertor up to version 4.6.1217, with no vendor patch currently available.

Is there a public PoC exploit available for CVE-2019-25363?

Yes, a public proof-of-concept exploit is available for CVE-2019-25363. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2019-25363?

Within 24 hours: Identify all systems running affected Wmv To Avi Mpeg Dvd Wmv Convertor versions and document business-critical dependencies. Within 7 days: Implement network-level restrictions to limit application access and disable the convertor where business-critical use is not required. Within 30 days: Evaluate alternative media conversion solutions with active vendor support, develop a migration plan, and establish a monitoring protocol for vendor patch availability.

Wmv To Avi Mpeg Dvd Wmv Convertor CVE-2019-25363

HIGH

Stack-based Buffer Overflow (CWE-121)

2026-02-18 disclosure@vulncheck.com

Buffer Overflow Denial Of Service Wmv To Avi Mpeg Dvd Wmv Convertor

7.5

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.5 HIGH

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

PoC Detected

Feb 26, 2026 - 21:50 vuln.today

Public exploit code

CVE Published

Feb 18, 2026 - 22:16 nvd

HIGH 7.5

DescriptionCVE.org

WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to crash the application by providing an oversized license input. Attackers can generate a 6000-byte payload and paste it into the 'License Name and License Code' field to trigger an application crash.

AnalysisAI

Wmv To Avi Mpeg Dvd Wmv Convertor versions up to 4.6.1217 is affected by stack-based buffer overflow (CVSS 7.5).

Technical ContextAI

This vulnerability (CWE-121: Stack-based Buffer Overflow) affects Wmv To Avi Mpeg Dvd Wmv Convertor. WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows attackers to crash the application by providing an oversized license input. Attackers can generate a 6000-byte payload and paste it into the 'License Name and License Code' field to trigger an application crash.

RemediationAI

Monitor vendor advisories for a patch. Enable ASLR, DEP/NX, and stack canaries where possible. Restrict network access to the affected service where possible.

CVE-2019-25363 vulnerability details – vuln.today

Back

Wmv To Avi Mpeg Dvd Wmv Convertor CVE-2019-25363

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code