CVE-2018-25432EPSS p5.7%

CVE-2018-25432CVE-2018-25432

Description

Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting the structured exception handler. Attackers can craft a malicious input file with a 672-byte offset to overwrite the nSEH and SEH pointers, enabling code execution through exception handler hijacking.

Scoring

CVSS 8.4 ()
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.16% probability of exploitation · percentile 5.7% · 2026-06-18T12:00:27Z
Last modified2026-06-02

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2018-25427
CVE
CVE-2018-25423
CVE
CVE-2019-25733
CVE
CVE-2025-1744
CVE
CVE-2025-1675
CVE
CVE-2025-24064
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.