CVE-2018-25297
Received Received - Intake
Buffer Overflow in Wansview 1.0.2 Causes Application Crash

Publication date: 2026-04-26

Last updated on: 2026-04-26

Assigner: VulnCheck

Description
Wansview 1.0.2 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying oversized input strings. Attackers can inject 2000-byte payloads into the Camera name and DID number fields during camera addition to trigger application crashes.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-26
Last Modified
2026-04-26
Generated
2026-05-07
AI Q&A
2026-04-27
EPSS Evaluated
2026-05-05
NVD
CVE-2018-25297
EUVD
EUVD-2018-21817
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
wansview wansview 1.0.2
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-120 The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

The vulnerability in Wansview 1.0.2 is a buffer overflow issue that occurs when local attackers supply oversized input strings. Specifically, attackers can inject payloads of up to 2000 bytes into the Camera name and DID number fields during the process of adding a camera. This causes the application to crash.


How can this vulnerability impact me? :

This vulnerability can impact you by allowing local attackers to crash the Wansview application. The crash is triggered by injecting large input strings into certain fields, which may lead to denial of service or disruption of normal camera management operations.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart