Tonec: >> Internet Download Manager Security Vulnerabilities
Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections.
CVSS Score
9.1
EPSS Score
0.002
Published
2025-11-05
Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Export/Import function. This vulnerability allows attackers to escalate local process privileges via a crafted ef2 file.
CVSS Score
7.1
EPSS Score
0.004
Published
2021-10-22
Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified vectors.
CVSS Score
6.7
EPSS Score
0.004
Published
2021-10-22
Stack-based buffer overflow in Internet Download Manager (IDM) before 5.19 allows remote attackers to execute arbitrary code via a crafted FTP URI that causes unspecified "test sequences" to be sent from client to server.
CVSS Score
9.3
EPSS Score
0.072
Published
2010-05-06