Cyber Resilience

CVE-2019-25467

HighPublic PoC

Published: 11 March 2026

Published
11 March 2026
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0011 1.7th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2019-25467 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Verypdf (inferred from references). Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked at the 1.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-16 (Memory Protection) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2019-25467 is a structured exception handling buffer overflow vulnerability (CWE-787) in Verypdf docPrint Pro 8.0. The flaw occurs when processing oversized alphanumeric encoded payloads supplied in the User Password or Master Password fields during PDF encryption, enabling local attackers to execute arbitrary code.

Local attackers can exploit this vulnerability with low attack complexity and no privileges required (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, score 8.4). By crafting a malicious payload incorporating encoded shellcode and SEH chain manipulation, they can bypass protections and achieve arbitrary code execution, as demonstrated by a MessageBox proof-of-concept when the password fields are processed.

Advisories including the Vulncheck advisory on Verypdf docPrint Pro local SEH buffer overflow and an Exploit-DB entry (exploit 47394) document the issue and provide a proof-of-concept exploit. Vendor resources such as the Verypdf website and docPrint Pro setup download are referenced, with no patch details specified in the available information.

A public proof-of-concept exploit is available, indicating potential for real-world local exploitation on unpatched systems.

EU & UK References

Vulnerability details

Verypdf docPrint Pro 8.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized alphanumeric encoded payload in the User Password or Master Password fields. Attackers can craft a malicious…

more

payload with encoded shellcode and SEH chain manipulation to bypass protections and execute a MessageBox proof-of-concept when the password fields are processed during PDF encryption.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
Why these techniques?

Local SEH buffer overflow in client PDF software enables arbitrary code execution via crafted input to password fields, matching Exploitation for Client Execution.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2019-25705Shared CWE-787
CVE-2019-25633Shared CWE-787
CVE-2026-0538Shared CWE-787
CVE-2016-20046Shared CWE-787
CVE-2019-25628Shared CWE-787
CVE-2019-25695Shared CWE-787
CVE-2018-25218Shared CWE-787
CVE-2026-42484Shared CWE-787
CVE-2019-25612Shared CWE-787
CVE-2025-43300Shared CWE-787

Affected Assets

Verypdf
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the buffer overflow vulnerability in Verypdf docPrint Pro by applying patches, workarounds, or removing the flawed software component.

prevent

Implements memory safeguards like DEP and ASLR to prevent arbitrary code execution from the SEH buffer overflow exploit in password fields.

prevent

Enforces validation of oversized alphanumeric inputs to password fields during PDF encryption processing to block the buffer overflow trigger.

References