CVE-2019-25245

HIGH

Ross Video DashBoard 8.5.1 - Privilege Escalation

Title source: llm

Description

Ross Video DashBoard 8.5.1 contains an elevation of privileges vulnerability that allows authenticated users to modify executable files due to improper permission settings. Attackers can exploit the 'M' or 'C' flags for 'Authenticated Users' group to replace the DashBoard.exe binary with a malicious executable.

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textlocalwindows

https://www.exploit-db.com/exploits/46742

View Code ZIP pw:eip

References (3)

Core 3

Core References

Various Sources product

https://www.rossvideo.com

Exploit, Third Party Advisory exploit

https://www.exploit-db.com/exploits/46742

Third Party Advisory third-party-advisory

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5516.php

Scores

CVSS v3 8.8

EPSS 0.0005

EPSS Percentile 15.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-732

Status published

Products (1)

Ross Video Ltd./DashBoard 8.5.1

Published Dec 24, 2025

Tracked Since Feb 18, 2026