CVE-2018-25231

HeidiSQL 9.5.0.5196 Denial of Service via Preferences

Description

HeidiSQL 9.5.0.5196 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long file path in the logging preferences. Attackers can input a buffer-overflow payload through the SQL log file path field in Preferences > Logging to trigger an application crash.

INFO

Published Date :

2026-03-30T11:02:23.160Z

Last Modified :

2026-03-30T14:51:48.071Z

Source :

VulnCheck

AFFECTED PRODUCTS

The following products are affected by CVE-2018-25231 vulnerability.

Vendors	Products
Heidisql	Heidisql

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2018-25231.

URL	Resource
https://www.exploit-db.com/exploits/45806
https://www.heidisql.com/
https://www.heidisql.com/download.php
https://www.vulncheck.com/advisories/heidisql-denial-of-service-via-preferences

CVSS Vulnerability Scoring System

V4
V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact