Description
Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove passcodes by injecting pre-encrypted database entries using a constant encryption key. Attackers can inject malicious database records into the application's database files to unlock the client and access all stored data, chats, images, and files without knowing the original passcode.
Published: 2026-05-25
Score: 7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Soroush IM Desktop App 0.17.0 allows a local attacker to bypass authentication by injecting pre‑encrypted database entries generated with a constant encryption key. This flaw lets the attacker create malicious records in the application’s database files, effectively removing the user’s passcode and unlocking the client. Once unlocked, the attacker has unrestricted access to all stored data, including chats, images, and files, compromising confidentiality and potentially the integrity of the entire data set. The vulnerability is limited to local access, but any user who can execute code on the compromised machine can exploit it.

Affected Systems

The vulnerability affects the Soroush Messenger desktop application, version 0.17.0, as distributed by the vendor Soroush. No other product or version is indicated as impacted.

Risk and Exploitability

The CVSS score of 7 indicates a high severity vulnerability. EPSS data is not available, and the issue is not listed in CISA’s KEV catalog, suggesting no currently known active exploit campaigns. The attack vector is local, requiring the attacker to have physical or administrative access to the target machine, but once accessed the weakness confers full control over the application’s data.

Generated by OpenCVE AI on May 25, 2026 at 15:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Soroush Messenger to the latest patched version that removes the constant‑key database injection flaw.
  • If a patch is unavailable, remove or securely delete the application’s database files and reinstall the application, ensuring new random encryption keys are used during the installation process.
  • Enforce strict local access controls on the host system, limiting physical and user rights to prevent unauthorized execution of code or modification of the application’s database files.

Generated by OpenCVE AI on May 25, 2026 at 15:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 26 May 2026 13:30:00 +0000

Type Values Removed Values Added
First Time appeared Soroush
Soroush soroush Messenger
Vendors & Products Soroush
Soroush soroush Messenger

Mon, 25 May 2026 14:30:00 +0000

Type Values Removed Values Added
Description Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove passcodes by injecting pre-encrypted database entries using a constant encryption key. Attackers can inject malicious database records into the application's database files to unlock the client and access all stored data, chats, images, and files without knowing the original passcode.
Title Soroush IM Desktop App 0.17.0 Authentication Bypass via Database Injection
Weaknesses CWE-290
References
Metrics cvssV3_1

{'score': 6.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N'}

cvssV4_0

{'score': 7, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Soroush Soroush Messenger
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-27T16:09:54.014Z

Reserved: 2026-05-24T13:26:19.658Z

Link: CVE-2018-25361

cve-icon Vulnrichment

Updated: 2026-05-27T16:09:49.472Z

cve-icon NVD

Status : Deferred

Published: 2026-05-25T15:16:18.640

Modified: 2026-05-26T19:47:48.987

Link: CVE-2018-25361

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T13:00:44Z

Weaknesses
  • CWE-290

    Authentication Bypass by Spoofing