ByteOS Network

Heidisql

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2018-25231

Assigner-VulnCheck

View Details

Assigner-VulnCheck

CVSS Score-6.9||MEDIUM

EPSS-0.01% / 2.94%

7 Day CHG~0.00%

Published-30 Mar, 2026 | 11:02

Updated-08 Apr, 2026 | 17:27

HeidiSQL 9.5.0.5196 Denial of Service via Preferences

HeidiSQL 9.5.0.5196 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long file path in the logging preferences. Attackers can input a buffer-overflow payload through the SQL log file path field in Preferences > Logging to trigger an application crash.

Vendor-heidisql Heidisql

Product-heidisql HeidiSQL

CWE ID-CWE-98

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

CVE-2019-25598

Assigner-VulnCheck

View Details

Assigner-VulnCheck

CVSS Score-6.9||MEDIUM

EPSS-0.02% / 3.99%

7 Day CHG~0.00%

Published-22 Mar, 2026 | 13:38

Updated-16 Apr, 2026 | 16:19

HeidiSQL Portable 10.1.0.5464 Denial of Service via Buffer Overflow

HeidiSQL Portable 10.1.0.5464 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the password field. Attackers can paste a buffer overflow payload into the password input during Microsoft SQL Server login to trigger an application crash.

Vendor-Heidisql

Product-HeidiSQL Portable

CWE ID-CWE-787

Out-of-bounds Write