CVE-2025-64693
9.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Security Point (Windows) of MaLion and MaLionCloud contains a heap-based buffer overflow vulnerability in processing Content-Length. Receiving a specially crafted request from a remote unauthenticated attacker could lead to arbitrary code execution with SYSTEM privilege.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Intercom, Inc. | Security Point (Windows) of MaLion | prior to Ver.7.1.1.9 | affected |
| Intercom, Inc. | Security Point (Windows) of MaLionCloud | prior to Ver.7.2.0.1 | affected |
Weaknesses
- CWE-122: Heap-based buffer overflow
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.