CVE-2019-25354 MEDIUM

CVE-2019-25354: iSmartViewPro 1.3.34 - Denial of Service

Vendor Shenzhen Smarteye Digital Electronics Co., Ltd.
Product iSmartViewPro
Weakness CWE-120
Published February 18, 2026
Last update February 19, 2026

CVSS base score

4.6/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

What the vulnerability does

01Description

iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the camera ID input field. Attackers can paste a 257-character buffer into the camera DID and password fields to trigger an application crash on iOS devices.

Key dates

02Disclosure timeline

February 18, 2026 CVE published
February 19, 2026 Record updated