Tonec: >> Internet Download Manager >> 6.37.11.1 Security Vulnerabilities
Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections.
CVSS Score
9.1
EPSS Score
0.0
Published
2025-11-05
Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Export/Import function. This vulnerability allows attackers to escalate local process privileges via a crafted ef2 file.
CVSS Score
7.1
EPSS Score
0.001
Published
2021-10-22
Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified vectors.
CVSS Score
6.7
EPSS Score
0.001
Published
2021-10-22