{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2019-25615", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-22T13:27:16.749Z", "datePublished": "2026-03-22T13:38:47.541Z", "dateUpdated": "2026-03-25T13:43:51.382Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-22T13:38:47.541Z"}, "datePublic": "2019-04-25T00:00:00.000Z", "title": "Lavavo CD Ripper 4.20 Local SEH Buffer Overflow", "descriptions": [{"lang": "en", "value": "Lavavo CD Ripper 4.20 contains a structured exception handling (SEH) buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Activation Name field. Attackers can craft a payload with controlled buffer data, NSEH jump instructions, and SEH handler addresses to trigger code execution and establish a bind shell on port 3110."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Out-of-bounds Write", "cweId": "CWE-787", "type": "CWE"}]}], "affected": [{"vendor": "Lavavosoftware", "product": "Lavavo CD Ripper", "versions": [{"version": "4.20", "status": "affected"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 8.6, "baseSeverity": "HIGH", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS"}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS"}], "references": [{"url": "https://www.exploit-db.com/exploits/46755", "name": "ExploitDB-46755", "tags": ["exploit"]}, {"url": "https://www.lavavosoftware.com", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "https://lavavo-cd-ripper.jaleco.com/download", "name": "Product Reference", "tags": ["product"]}, {"name": "VulnCheck Advisory: Lavavo CD Ripper 4.20 Local SEH Buffer Overflow", "tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/lavavo-cd-ripper-local-seh-buffer-overflow"}], "credits": [{"lang": "en", "value": "Achilles", "type": "finder"}], "x_generator": {"engine": "vulncheck"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-25T13:43:05.717176Z", "id": "CVE-2019-25615", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T13:43:51.382Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2019-25615", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-25T13:43:05.717176Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-25T13:43:46.620Z"}}], "cna": {"title": "Lavavo CD Ripper 4.20 Local SEH Buffer Overflow", "credits": [{"lang": "en", "type": "finder", "value": "Achilles"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.6, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "Lavavosoftware", "product": "Lavavo CD Ripper", "versions": [{"status": "affected", "version": "4.20"}]}], "datePublic": "2019-04-25T00:00:00.000Z", "references": [{"url": "https://www.exploit-db.com/exploits/46755", "name": "ExploitDB-46755", "tags": ["exploit"]}, {"url": "https://www.lavavosoftware.com", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "https://lavavo-cd-ripper.jaleco.com/download", "name": "Product Reference", "tags": ["product"]}, {"url": "https://www.vulncheck.com/advisories/lavavo-cd-ripper-local-seh-buffer-overflow", "name": "VulnCheck Advisory: Lavavo CD Ripper 4.20 Local SEH Buffer Overflow", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "vulncheck"}, "descriptions": [{"lang": "en", "value": "Lavavo CD Ripper 4.20 contains a structured exception handling (SEH) buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Activation Name field. Attackers can craft a payload with controlled buffer data, NSEH jump instructions, and SEH handler addresses to trigger code execution and establish a bind shell on port 3110."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-787", "description": "Out-of-bounds Write"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-22T13:38:47.541Z"}}}, "cveMetadata": {"cveId": "CVE-2019-25615", "state": "PUBLISHED", "dateUpdated": "2026-03-25T13:43:51.382Z", "dateReserved": "2026-03-22T13:27:16.749Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-03-22T13:38:47.541Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Lavavo CD Ripper 4.20 contains a structured exception handling (SEH) buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Activation Name field. Attackers can craft a payload with controlled buffer data, NSEH jump instructions, and SEH handler addresses to trigger code execution and establish a bind shell on port 3110."}, {"lang": "es", "value": "Lavavo CD Ripper 4.20 contiene una vulnerabilidad de desbordamiento de b\u00fafer de manejo estructurado de excepciones (SEH) que permite a atacantes locales ejecutar c\u00f3digo arbitrario al proporcionar una cadena maliciosa en el campo License Activation Name. Los atacantes pueden crear una carga \u00fatil con datos de b\u00fafer controlados, instrucciones de salto NSEH y direcciones de gestor SEH para desencadenar la ejecuci\u00f3n de c\u00f3digo y establecer un bind shell en el puerto 3110."}], "id": "CVE-2019-25615", "lastModified": "2026-04-16T16:19:50.757", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.9, "source": "disclosure@vulncheck.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-03-22T14:16:30.117", "references": [{"source": "disclosure@vulncheck.com", "url": "https://lavavo-cd-ripper.jaleco.com/download"}, {"source": "disclosure@vulncheck.com", "url": "https://www.exploit-db.com/exploits/46755"}, {"source": "disclosure@vulncheck.com", "url": "https://www.lavavosoftware.com"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/lavavo-cd-ripper-local-seh-buffer-overflow"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "4.20"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Lavavo CD Ripper", "source": "cna", "vendor": "Lavavosoftware"}, "product": "lavavo_cd_ripper", "vendor": "lavavosoftware"}], "analysis": {"en": {"generated_at": "2026-03-22T14:36:36.597671+00:00", "value": {"mitigation_remediation": ["Update Lavavo CD Ripper to the latest release available from the vendor; current version 4.20 is vulnerable.", "Uninstall version 4.20 and perform a clean installation of the newer version to ensure the flaw is removed.", "If an update is unavailable, restrict access to the License Activation Name field by limiting user privileges or disabling the feature via configuration.\n", "Configure firewall or host-based rules to block outbound connections on port 3110 to prevent potential bind-shell activity.\n", "Apply general Windows security hardening, including regularly installing platform updates, using application whitelisting, and monitoring for suspicious local processes."], "summary": {"action": "Immediate Patch", "impact": "Local Code Execution via SEH Buffer Overflow"}, "threat_synthesis": {"affected_systems": "The vulnerability affects Lavavo CD Ripper version 4.20 from Lavavosoftware. No other product versions are listed, so installations of 4.20 are considered vulnerable. The application is a Windows-based CD copying utility typically used in desktop environments.", "description_and_impact": "Lavavo CD Ripper 4.20 has a structured exception handling buffer overflow that can be triggered by supplying a crafted string in the License Activation Name field. When the application processes this input, a malicious payload can overwrite the SEH chain, redirect execution flow, and spawn a bind shell on port 3110. This results in local code execution, allowing an attacker to run arbitrary code with the privileges of the logged\u2011in user. The flaw is a classic heap-based buffer overflow (CWE\u2011787).", "risk_and_exploitability": "The CVSS score of 8.6 categorizes it as high severity. The exploit requires local access to the affected machine; the EPSS score is not available, so the likelihood of exploitation is uncertain, but the lack of a CISA KEV listing suggests no widespread exploitation yet. Attackers could introduce the malicious input via a forged license name field or a special license file, making the vulnerability exploitable in environments where users can manipulate that input. No public exploitation report beyond the available proof\u2011of\u2011concept exists."}}}}, "created": "2026-03-23T09:46:06.215338+00:00", "updated": "2026-03-25T14:50:43.591665+00:00", "vendors": ["lavavosoftware", "lavavosoftware$PRODUCT$lavavo_cd_ripper"]}