Search criteria
1 vulnerability by Soroush
CVE-2018-25361 (GCVE-0-2018-25361)
Vulnerability from cvelistv5 ā Published: 2026-05-25 14:15 ā Updated: 2026-05-27 16:09
VLAI
Title
Soroush IM Desktop App 0.17.0 Authentication Bypass via Database Injection
Summary
Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove passcodes by injecting pre-encrypted database entries using a constant encryption key. Attackers can inject malicious database records into the application's database files to unlock the client and access all stored data, chats, images, and files without knowing the original passcode.
Severity
CWE
- CWE-290 - Authentication Bypass by Spoofing
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://www.exploit-db.com/exploits/45171 | exploit |
| https://soroush-app.ir | product |
| http://54.36.43.176/SoroushSetup0.17.0.exe | product |
| https://www.vulncheck.com/advisories/soroush-im-dā¦ | third-party-advisory |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Soroush | Soroush IM Desktop App |
Affected:
0.17.0
|
Date Public
2018-08-08 00:00
Credits
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2018-25361",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-27T16:02:19.541855Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-27T16:09:54.014Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Soroush IM Desktop App",
"vendor": "Soroush",
"versions": [
{
"status": "affected",
"version": "0.17.0"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "VortexNeoX64"
}
],
"datePublic": "2018-08-08T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove passcodes by injecting pre-encrypted database entries using a constant encryption key. Attackers can inject malicious database records into the application\u0027s database files to unlock the client and access all stored data, chats, images, and files without knowing the original passcode."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 7,
"baseSeverity": "HIGH",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS"
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-290",
"description": "Authentication Bypass by Spoofing",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-25T23:41:07.358Z",
"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"shortName": "VulnCheck"
},
"references": [
{
"name": "ExploitDB-45171",
"tags": [
"exploit"
],
"url": "https://www.exploit-db.com/exploits/45171"
},
{
"name": "Official Product Homepage",
"tags": [
"product"
],
"url": "https://soroush-app.ir"
},
{
"name": "Product Reference",
"tags": [
"product"
],
"url": "http://54.36.43.176/SoroushSetup0.17.0.exe"
},
{
"name": "VulnCheck Advisory: Soroush IM Desktop App 0.17.0 Authentication Bypass via Database Injection",
"tags": [
"third-party-advisory"
],
"url": "https://www.vulncheck.com/advisories/soroush-im-desktop-app-authentication-bypass-via-database-injection"
}
],
"title": "Soroush IM Desktop App 0.17.0 Authentication Bypass via Database Injection",
"x_generator": {
"engine": "vulncheck"
}
}
},
"cveMetadata": {
"assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
"assignerShortName": "VulnCheck",
"cveId": "CVE-2018-25361",
"datePublished": "2026-05-25T14:15:08.685Z",
"dateReserved": "2026-05-24T13:26:19.658Z",
"dateUpdated": "2026-05-27T16:09:54.014Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}