CVE-2025-64693

Summary

Security Point (Windows) of MaLion and MaLionCloud contains a heap-based buffer overflow vulnerability in processing Content-Length. Receiving a specially crafted request from a remote unauthenticated attacker could lead to arbitrary code execution with SYSTEM privilege.

Affected Software

VendorProductVersion RangeStatus
Intercom, Inc.Security Point (Windows) of MaLionprior to Ver.7.1.1.9affected
Intercom, Inc.Security Point (Windows) of MaLionCloudprior to Ver.7.2.0.1affected

Weaknesses

  • CWE-122: Heap-based buffer overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References