CVE-2018-25294 in CEWE Photoshowinformação

Sumário

de MITRE • 27/04/2026

CEWE Photoshow 6.3.4 contains a buffer overflow vulnerability in the login dialog that allows attackers to crash the application by submitting oversized input. Attackers can inject 4000 bytes of data into the email address and password fields to trigger a denial of service condition.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulnCheck

Reservar

26/04/2026

Divulgação

27/04/2026

Moderação

aceite

Entrada

VDB-359697

CPE

pronto

CWE

CWE-120 (confirmado)

Exploração

Descarregar

CVSS

7.5 (CNA)

EPSS

0.00059

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-25294
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-25294
CVE Details	https://www.cvedetails.com/cve/CVE-2018-25294/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!