Cyber Resilience

CVE-2018-25224

HighPublic PoC

Published: 28 March 2026

Published
28 March 2026
Modified
02 April 2026
KEV Added
Patch
CVSS Score v4 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0019 8.9th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2018-25224 is a high-severity Missing Authentication for Critical Function (CWE-306) vulnerability in Kimtore Practical Music Search. Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked at the 8.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2018-25224 is a stack-based buffer overflow vulnerability in PMS version 0.42. The flaw occurs during parsing of the configuration file, where attackers can supply oversized input to overflow the stack buffer, enabling arbitrary code execution through return-oriented programming (ROP) gadgets. It is classified under CWE-306 and carries a CVSS v3.1 base score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Local unauthenticated attackers can exploit this vulnerability by crafting and supplying malicious configuration files to the affected PMS instance. Successful exploitation allows execution of arbitrary shell commands, granting high-impact confidentiality, integrity, and availability effects without requiring privileges or user interaction.

Advisories and references, including the PMS project site at https://pms.sourceforge.net, an Exploit-DB entry at https://www.exploit-db.com/exploits/44426, and a VulnCheck advisory at https://www.vulncheck.com/advisories/pms-stack-based-buffer-overflow-via-configuration-file, document the issue and provide further details on exploitation and potential mitigations. A public proof-of-concept exploit is available via Exploit-DB.

The vulnerability was published on 2026-03-28, with a confirmed exploit demonstrating practical exploitability.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

PMS 0.42 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious values in the configuration file. Attackers can craft configuration files with oversized input that overflows the stack buffer and execute…

more

shell commands via return-oriented programming gadgets.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
T1059.004 Unix Shell Execution
Adversaries may abuse Unix shell commands and scripts for execution.
Why these techniques?

Local stack buffer overflow in config parsing directly enables client-side exploitation for arbitrary code execution (T1203) and Unix shell command execution via ROP (T1059.004).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2023-54344Shared CWE-306
CVE-2019-25483Shared CWE-306
CVE-2023-54342Shared CWE-306
CVE-2025-52089Shared CWE-306
CVE-2026-39987Shared CWE-306
CVE-2026-35546Shared CWE-306
CVE-2025-27020Shared CWE-306
CVE-2018-25225Shared CWE-306
CVE-2025-12548Shared CWE-306
CVE-2026-4810Shared CWE-306

Affected Assets

kimtore
practical music search
≤ 0.42

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires validation of configuration file inputs to detect and reject oversized or malformed data that could trigger the stack buffer overflow.

prevent

Implements memory protections such as non-executable stacks and address space randomization to block exploitation of the buffer overflow via ROP gadgets for arbitrary code execution.

prevent

Mandates timely identification, reporting, and remediation of the specific stack-based buffer overflow flaw in PMS configuration parsing.

References