CVE-2018-25427
Published: 01 June 2026
Summary
CVE-2018-25427 is a critical-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Armcode (inferred from references). Its CVSS base score is 9.3 (Critical).
Operationally, ranked in the top 44.0% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2018-21957
Vulnerability details
Arm Whois 3.11 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by supplying oversized input to the IP address or domain field. Attackers can craft malicious input exceeding 658 bytes with shellcode to overwrite…
more
the structured exception handler and gain command execution when the application processes the input.
- CWE(s)
Related Threats
CVEs Like This One
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.