PT-2026-20524 · Unknown · Scadaapp For Ios

Luis Martinez

Published

2026-02-18

Updated

2026-02-18

CVE-2019-25349

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions ScadaApp for iOS version 1.1.4.0

Description The application can be crashed by providing an oversized buffer in the Servername field during login. Specifically, inputting a 257-character buffer can trigger an application crash on iOS devices. The issue results in a denial of service. The vulnerable parameter is Servername.

Recommendations Update to a newer version of ScadaApp for iOS that addresses this issue. As a temporary workaround, limit the length of the input accepted in the Servername field during login to prevent the application from crashing.

Exploit

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2019-25349

Affected Products

Scadaapp For Ios

PT-2026-20524 · Unknown · Scadaapp For Ios

CVE-2019-25349

Weakness Enumeration

Related Identifiers

Affected Products

References · 5