Skip to main content

Crashmail

1 CVEs product

Monthly

CVE-2018-25223 CRITICAL POC PATCH Act Now

Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending malicious input to the application. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Memory Corruption Buffer Overflow Denial Of Service Crashmail
NVD Exploit-DB VulDB
CVSS 4.0
9.3
EPSS
0.2%
EPSS 0% CVSS 9.3
CRITICAL POC PATCH Act Now

Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending malicious input to the application. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Memory Corruption Buffer Overflow +2
NVD Exploit-DB VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy