Cyber Resilience

CVE-2018-25299

HighPublic PoC

Published: 29 April 2026

Published
29 April 2026
Modified
30 April 2026
KEV Added
Patch
CVSS Score v4 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0016 5.8th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2018-25299 is a high-severity Classic Buffer Overflow (CWE-120) vulnerability in Mersenne (inferred from references). Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 5.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2018-25299 is a local buffer overflow vulnerability (CWE-120) in Prime95 version 29.4b8, a software tool used for Mersenne prime hunting and stress-testing. The flaw resides in the PrimeNet connection settings, where the optional proxy hostname field can be abused to inject a malicious payload, triggering a structured exception handling (SEH) overwrite that enables arbitrary code execution. It carries a CVSS v3.1 base score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), indicating high severity due to its potential for complete system compromise.

A local attacker can exploit this vulnerability with low attack complexity and no user privileges or interaction required. By supplying a specially crafted string in the proxy hostname field, the attacker triggers the buffer overflow, hijacks SEH control flow, and executes arbitrary system commands, potentially leading to full control over the affected system including data theft, modification, or denial of service.

Advisories and references, including Vulncheck's detailed analysis of the Prime95 29.4b8 SEH overflow and an Exploit-DB proof-of-concept (ID 44649), confirm the issue without specifying patches. The official Prime95 site at mersenne.org and its download page provide access to the software, where users should check for updated versions beyond 29.4b8 to mitigate exposure.

EU & UK References

Vulnerability details

Prime95 29.4b8 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting structured exception handling (SEH) mechanisms. Attackers can inject malicious payload through the optional proxy hostname field in the PrimeNet connection settings to trigger…

more

the overflow and execute system commands.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Local buffer overflow with SEH overwrite enables arbitrary code execution from a low-privileged context, directly mapping to exploitation for privilege escalation.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-1679Shared CWE-120
CVE-2026-28925Shared CWE-120
CVE-2018-9387Shared CWE-120
CVE-2025-71263Shared CWE-120
CVE-2020-37049Shared CWE-120
CVE-2025-47388Shared CWE-120
CVE-2018-25263Shared CWE-120
CVE-2022-49754Shared CWE-120
CVE-2025-49495Shared CWE-120
CVE-2025-47389Shared CWE-120

Affected Assets

Mersenne
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the buffer overflow by enforcing validation of untrusted inputs like the proxy hostname field to prevent overflow conditions.

prevent

Implements memory protections such as DEP and ASLR that thwart SEH overwrite exploits even if a buffer overflow occurs.

prevent

Requires timely flaw remediation through patching or upgrading Prime95 beyond version 29.4b8 to eliminate the vulnerability.

References