EUVD-2018-18668

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Insufficient validation in ELF header parser in FreeBSD may lead to kernel crash or memory disclosure

Reporter	Title	Published	Views	Family All 11
FreeBSD	FreeBSD -- Improper ELF header parsing	12 Sep 201800:00	–	freebsd
Circl	CVE-2018-6924	17 Oct 202417:08	–	circl
CNVD	FreeBSD Denial of Service Vulnerability (CNVD-2020-38783)	16 Sep 201800:00	–	cnvd
CVE	CVE-2018-6924	12 Sep 201815:00	–	cve
Cvelist	CVE-2018-6924	12 Sep 201815:00	–	cvelist
Debian CVE	CVE-2018-6924	12 Sep 201815:00	–	debiancve
FreeBSD Advisory	FreeBSD-SA-18:12.elf	12 Sep 201800:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- Improper ELF header parsing (a67c122a-b693-11e8-ac58-a4badb2f4699)	13 Sep 201800:00	–	nessus
Tenable Nessus	pfSense 2.3.x <= 2.3.5-p2 / 2.4.x < 2.4.4 Multiple Vulnerabilities (SA-18_06 / SA-18_07 / SA-18_08)	27 Dec 201800:00	–	nessus
NVD	CVE-2018-6924	12 Sep 201814:29	–	nvd

[
  {
    "enisaIdVendor": [
      {
        "id": "98632644-e916-3f8a-9987-dbfc5a663721",
        "vendor": {
          "name": "FreeBSD"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6f9184ce-6170-3672-9b75-ccb32111bceb",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "before 11.1-STABLE, 11.2-RELEASE-p3, 11.1-RELEASE-p14, 10.4-STABLE, and 10.4-RELEASE-p12"
      }
    ]
  }
]

Source	Link
securitytracker	www.securitytracker.com/id/1041646
security	www.security.freebsd.org/advisories/FreeBSD-SA-18:12.elf.asc
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.1High risk

Vulners AI Score7.1

CVSS 37.1

CVSS 25.6

EPSS0.00055