CVE-2025-34164

Published Aug 30, 2025

Last updated 5 months ago

CVSS high 8.8

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-34164 describes a heap-based buffer overflow vulnerability found in NetSupport Manager 14.x versions preceding 14.12.0000. This flaw allows a remote, unauthenticated attacker to potentially trigger a denial of service (DoS) condition or execute arbitrary code on affected systems.

Description
A heap-based buffer overflow vulnerability in NetSupport Manager 14.x versions prior to 14.12.0000 allows a remote, unauthenticated attacker to cause a denial of service (DoS) or potentially result in arbitrary code execution.
Source
disclosure@vulncheck.com
NVD status
Awaiting Analysis

Risk scores

CVSS 4.0

Type
Secondary
Base score
8.8
Impact score
-
Exploitability score
-
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity
HIGH

Weaknesses

disclosure@vulncheck.com
CWE-122

Social media

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score

15

  1. You like technical deep dives into binary exploitation and crazy heap wizardry? Then you'll like our blog post by @0xor_solo about unauth'ed RCE in NetSupport Manager aka CVE-2025-34164 & CVE-2025-34165 https://t.co/qTobSqOjrY

    @codewhitesec

    23 Jan 2026

    10665 Impressions

    43 Retweets

    110 Likes

    63 Bookmarks

    0 Replies

    2 Quotes

  2. [CVE-2025-34164: HIGH] A critical heap-based buffer overflow vulnerability in NetSupport Manager versions 14.x could lead to a denial of service or arbitrary code execution. Update to version 14.12.0000 imme...#cve,CVE-2025-34164,#cybersecurity https://t.co/2CdJBStek8 https://t.c

    @CveFindCom

    29 Aug 2025

    170 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-34164 A heap-based buffer overflow vulnerability in NetSupport Manager 14.x versions prior to 14.12.0000 allows a remote, unauthenticated attacker to cause a denial of serv… https://t.co/MuVgRrn4FE

    @CVEnew

    29 Aug 2025

    485 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.