CRITICALVulnerability
Verified
Global

NVD CRITICAL: CVE-2019-25741 — Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buff...

·Source: NIST NVD

Updated:

Executive Summary

Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the vulnerability when imported and executed, enabling reverse shell execution with user privileges.

Analysis

Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buffer overflow vulnerability in the username field of session files that allows remote attackers to execute arbitrary code. Attackers can craft a malicious MobaXterm sessions file with overflow data that triggers the vulnerability when imported and executed, enabling reverse shell execution with user privileges. CVSS Score: 9.8. Published: 2026-06-04T14:16:32.787.

Indicators of Compromise (1)

CVE (1)
CVE-2019-25741
NVDMITRE CVE
Source Attribution

Originally published by NIST NVD on Jun 4, 2026. Verified by: NIST.

Related Threats

MEDIUMVulnerabilityNEW

Senate Committee Leader Seeks Answers on NYC Health Hack

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/senate-committee-leader-seeks-answers-on-nyc-health-hack-image_small-10-a-31913.jpg" align=right hspace=4><b>Sen. Bill Cassidy Quizzes NYC Health CEO and NYC Mayor About Cyber Practices</b><br>The chair of the U.S. Senate health committee is seeking answers from New York City officials - including the city's mayor - about a 2025 h

Bank Info Security
MEDIUMVulnerability

New Apple feature automatically changes your compromised passwords

At WWDC 26, Apple announced an Apple Intelligence-powered feature that can automatically fix weak and compromised passwords. This works in Safari, and it's rolling out with iOS 27. [...]

BleepingComputer
MEDIUMVulnerability

Post-Quantum Prep Should Start Now, Says German State

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/post-quantum-prep-should-start-now-says-german-state-image_small-9-a-31911.jpg" align=right hspace=4><b>It May Already Be Too Late, Says Athene</b><br>The transition to post-quantum cryptography will be a heavy lift. Experts from Germany's National Research Center for Applied Cybersecurity say there's plenty that can be done in th

Bank Info Security