216.73.216.194

CVE-2019-25598

· Published 22/03/2026 14:16 · Modified 23/03/2026 14:31

Labels: CVE-2019-25598 2026-03-22CVE-2019-25598CWE-787[email protected]

Essential information

Published
22/03/2026 14:16
Modified
23/03/2026 14:31
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

HeidiSQL Portable 10.1.0.5464 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the password field. Attackers can paste a buffer overflow payload into the password input during Microsoft SQL Server login to trigger an application crash.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
heidisql / heidisql portable cpe:2.3:a:heidisql:heidisql_portable:10.1.0.5464:*:*:*:*:*:*:*

References