What is CVE-2018-25222?

CVE-2018-25222 is a high-severity vulnerability in Sc, classified under Out-of-bounds Write. CVSS score: 8.4/10. Published 2026-03-28.

How severe is CVE-2018-25222?

High severity. CVSS v3 base score is 8.4 out of 10.

Buffer overflow in Sc

CVE-2018-25222

SC v7.16 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers can craft malicious input strings exceeding 1052 byt…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (6.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.4 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Sc — versions 7.16

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

ExploitDB-44279 (exploit)
VulnCheck Advisory: SC v7.16 Stack-Based Buffer Overflow Remote Code Execution (third-party-advisory)

Frequently asked questions

What is CVE-2018-25222?: CVE-2018-25222 is a high-severity vulnerability in Sc, classified under Out-of-bounds Write. CVSS score: 8.4/10. Published 2026-03-28.
How severe is CVE-2018-25222?: High severity. CVSS v3 base score is 8.4 out of 10.