CVE-2018-25224 in PMS
요약 (영어)
PMS 0.42 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious values in the configuration file. Attackers can craft configuration files with oversized input that overflows the stack buffer and execute shell commands via return-oriented programming gadgets.
책임이 있는
VulnCheck
예약하다
2026. 03. 28.
공개
2026. 03. 28.
엔트리
| 게시됨 | 기본 | 임시 | 취약성 | CWE | 제품 | 악용 | 대책 | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 2026. 03. 28. | 6.8 | 6.6 | PMS Configuration 약한 인증 | 306 | 알 수 없음 | 개념 증명 | 정의되지 않음 | 0.00016 | 2.71 | CVE-2018-25224 |