Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 26 May 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sat, 23 May 2026 19:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Sipp
Sipp sipp |
|
| Vendors & Products |
Sipp
Sipp sipp |
Sat, 23 May 2026 18:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | SIPp 3.6 and earlier contains a local buffer overflow vulnerability in command-line argument handling that allows local attackers to crash the application or execute arbitrary code. Attackers can trigger the vulnerability by supplying oversized input to the -3pcc, -i, or -log_file parameters, causing strcpy to write beyond buffer boundaries in sipp.cpp. | |
| Title | SIPp 3.6 Local Buffer Overflow via Command-line Arguments | |
| Weaknesses | CWE-120 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: VulnCheck
Published:
Updated: 2026-05-26T13:28:27.734Z
Reserved: 2026-05-23T16:26:22.154Z
Link: CVE-2018-25356
Updated: 2026-05-26T13:28:24.374Z
Status : Deferred
Published: 2026-05-23T19:16:55.900
Modified: 2026-06-17T01:55:18.340
Link: CVE-2018-25356
No data.
OpenCVE Enrichment
Updated: 2026-05-23T19:30:25Z