CVE-2018-25307

HIGH 8.4

SysGauge Pro 4.6.12 Local Buffer Overflow SEH

CVSS Score

8.4

EPSS Score

0.0%

EPSS Percentile

0th

SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute arbitrary code with application privileges.

CWE	CWE-120
Vendor	sysgauge
Product	sysgauge pro
Published	Apr 29, 2026
Last Updated	Apr 29, 2026

Stay Ahead of the Next One

Get instant alerts for sysgauge sysgauge pro

Be the first to know when new high vulnerabilities affecting sysgauge sysgauge pro are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Sysgauge / SysGauge Pro

4.6.12

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/44455 vulncheck.com: https://www.vulncheck.com/advisories/sysgauge-pro-local-buffer-overflow-seh

Credits

Hashim Jawad #