CVE-2019-25436 — Sricam DeviceViewer 3.12.0.1 contains a password change security bypass vulnerability that allows authenticated users to change passwords without proper validation of the old password field. Attackers — CVE Database · The Intelligence Room