{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2018-25293", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-04-26T13:11:04.130Z", "datePublished": "2026-04-26T13:19:22.545Z", "dateUpdated": "2026-04-27T13:05:40.610Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-26T13:19:22.545Z"}, "datePublic": "2018-08-20T00:00:00.000Z", "title": "Prime95 29.4b7 Denial of Service via Proxy Password Field", "descriptions": [{"lang": "en", "value": "Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional proxy password field. Attackers can trigger a denial of service by entering a 6000-byte payload into the proxy password parameter, causing the application to crash when processing the connection settings."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", "cweId": "CWE-120", "type": "CWE"}]}], "affected": [{"vendor": "Mersenne", "product": "Prime95", "versions": [{"version": "29.4b7", "status": "affected"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:mersenne:prime95:29.4b7:*:*:*:*:*:*:*"}, {"vulnerable": true, "criteria": "cpe:2.3:a:mersenne:prime95:30.7:build9:*:*:*:*:*:*"}, {"vulnerable": true, "criteria": "cpe:2.3:a:mersenne:prime95:30.7:-:*:*:*:*:*:*"}]}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 6.9, "baseSeverity": "MEDIUM", "exploitMaturity": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS"}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS"}], "references": [{"url": "https://www.exploit-db.com/exploits/45226", "name": "ExploitDB-45226", "tags": ["exploit"]}, {"url": "http://www.mersenne.org", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "http://www.mersenne.org/ftp_root/gimps/p95v294b7.win32.zip", "name": "Product Reference", "tags": ["product"]}, {"name": "VulnCheck Advisory: Prime95 29.4b7 Denial of Service via Proxy Password Field", "tags": ["third-party-advisory"], "url": "https://www.vulncheck.com/advisories/prime95-29-4b7-denial-of-service-via-proxy-password-field"}], "credits": [{"lang": "en", "value": "Gionathan \"John\" Reale", "type": "finder"}], "x_generator": {"engine": "vulncheck"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-27T13:05:29.554152Z", "id": "CVE-2018-25293", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T13:05:40.610Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2018-25293", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-27T13:05:29.554152Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T13:05:32.917Z"}}], "cna": {"title": "Prime95 29.4b7 Denial of Service via Proxy Password Field", "credits": [{"lang": "en", "type": "finder", "value": "Gionathan \"John\" Reale"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.9, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Mersenne", "product": "Prime95", "versions": [{"status": "affected", "version": "29.4b7"}]}], "datePublic": "2018-08-20T00:00:00.000Z", "references": [{"url": "https://www.exploit-db.com/exploits/45226", "name": "ExploitDB-45226", "tags": ["exploit"]}, {"url": "http://www.mersenne.org", "name": "Official Product Homepage", "tags": ["product"]}, {"url": "http://www.mersenne.org/ftp_root/gimps/p95v294b7.win32.zip", "name": "Product Reference", "tags": ["product"]}, {"url": "https://www.vulncheck.com/advisories/prime95-29-4b7-denial-of-service-via-proxy-password-field", "name": "VulnCheck Advisory: Prime95 29.4b7 Denial of Service via Proxy Password Field", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "vulncheck"}, "descriptions": [{"lang": "en", "value": "Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional proxy password field. Attackers can trigger a denial of service by entering a 6000-byte payload into the proxy password parameter, causing the application to crash when processing the connection settings."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-120", "description": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mersenne:prime95:29.4b7:*:*:*:*:*:*:*", "vulnerable": true}, {"criteria": "cpe:2.3:a:mersenne:prime95:30.7:build9:*:*:*:*:*:*", "vulnerable": true}, {"criteria": "cpe:2.3:a:mersenne:prime95:30.7:-:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-26T13:19:22.545Z"}}}, "cveMetadata": {"cveId": "CVE-2018-25293", "state": "PUBLISHED", "dateUpdated": "2026-04-27T13:05:40.610Z", "dateReserved": "2026-04-26T13:11:04.130Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-04-26T13:19:22.545Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional proxy password field. Attackers can trigger a denial of service by entering a 6000-byte payload into the proxy password parameter, causing the application to crash when processing the connection settings."}], "id": "CVE-2018-25293", "lastModified": "2026-04-27T18:53:00.053", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 3.6, "source": "disclosure@vulncheck.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-04-26T22:17:30.660", "references": [{"source": "disclosure@vulncheck.com", "url": "http://www.mersenne.org"}, {"source": "disclosure@vulncheck.com", "url": "http://www.mersenne.org/ftp_root/gimps/p95v294b7.win32.zip"}, {"source": "disclosure@vulncheck.com", "url": "https://www.exploit-db.com/exploits/45226"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/prime95-29-4b7-denial-of-service-via-proxy-password-field"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "29.4b7"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Prime95", "source": "cna", "vendor": "Mersenne"}, "product": "prime95", "vendor": "mersenne"}], "analysis": {"en": {"generated_at": "2026-04-28T05:10:02.002479+00:00", "value": {"mitigation_remediation": ["Install the latest Prime95 release (e.g., 30.7 or later) which fixes the proxy password buffer overflow.", "If an upgrade is not possible, avoid using the proxy feature or keep the proxy password field empty when containing only short strings; the application must not accept passwords longer than the buffer size for the dialog.", "Run Prime95 under a restricted user account and consider disabling or isolating the PrimeNet feature to reduce the attack surface when the application is in use."], "summary": {"action": "Update Immediately", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "The issue affects the Mersenne Prime95 family, specifically version 29.4b7 and later build 30.7. Users running these versions that have the PrimeNet proxy feature enabled are susceptible to the crash.", "description_and_impact": "Prime95 29.4b7 has a buffer overflow in the PrimeNet connection dialog that lets a local user crash the program by entering an excessively long string in the optional proxy password field. The vulnerability results in a denial of service for the application; the crash occurs when the application processes the stored connection settings after the user supplies a payload, such as a 6000\u2011byte string. The weakness is a classic stack corruption (CWE\u2011120).", "risk_and_exploitability": "The CVSS score of 6.9 indicates moderate severity, while the EPSS of less than 1% suggests that exploitation attempts are rare at present. The vulnerability is not listed in the CISA KEV catalog, meaning no known widespread exploitation has been observed. It requires local access to the machine running Prime95; remote exploitation would need the attacker to inject the payload via a user\u2019s interaction with the proxy password field, which is not exposed over a network interface. Given the moderate score and low exploitation probability, the risk is significant mainly to users who depend on continuous Prime95 operations for computational work."}}}}, "created": "2026-04-27T18:41:59.093473+00:00", "updated": "2026-04-28T05:15:22.943626+00:00", "vendors": ["mersenne", "mersenne$PRODUCT$prime95"]}