CVE-2019-25331 HIGH

CVE-2019-25331: AVS Audio Converter 9.1 - 'Exit folder' Buffer Overflow

Vendor Avs4You
Product AVS Audio Converter
Weakness CWE-121
Published February 12, 2026
Last update March 5, 2026

CVSS base score

8.4/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to compromise the application and potentially execute arbitrary code.

Key dates

02Disclosure timeline

February 12, 2026 CVE published
March 5, 2026 Record updated

Related vulnerabilities

04Related CVE