CVE-2025-0618

Published Apr 23, 2025

Last updated 2 months ago

CVSS medium 6.5

Overview

Description
A malicious third party could invoke a persistent denial of service vulnerability in FireEye EDR agent by sending a specially-crafted tamper protection event to the HX service to trigger an exception. This exception will prevent any further tamper protection events from being processed, even after a reboot of HX.
Source
trellixpsirt@trellix.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.5
Impact score
3.6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity
MEDIUM

Weaknesses

trellixpsirt@trellix.com
CWE-94

Social media

Hype score
Not currently trending

  1. برای سرویس EDR از مدل FireEy آسیب پذیری با کد شناسایی CVE-2025-0618 منتشر شده است. این آسیب پذیری به هکرها امکان اجرای کد بدون احراز هویت و اجرای حمله denial-of-service (DoS) را می دهد. برای پیشگیری و مقابله با این تهدید به روز رسانی را اعمال نمایید. https://t.co/Poz3aKYxT1 https

    @AmirHossein_sec

    25 Apr 2025

    26 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 FireEye EDR flaw (CVE-2025-0618) lets attackers disable tamper protection & crash key defenses — even after reboot 😱 🔧 Trellix is working on a fix. 🔐 Update ASAP! Source: https://t.co/LY7AezeWHj #CyberSecurity #CVE2025_0618 #FireEye #DoS #HackAlert https://t.co/HZ4ba

    @protecticore

    24 Apr 2025

    29 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  3. FireEyeのEDRエージェントに深刻な脆弱性(CVE-2025-0618)が発見された。この脆弱性は、細工された改ざん防止イベントを送信することで、処理例外を発生させ、持続的なサービス拒否(DoS)状態を引き起こすものである。

    @yousukezan

    23 Apr 2025

    1595 Impressions

    1 Retweet

    15 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

  4. Critical vulnerability CVE-2025-0618 in FireEye EDR agent allows attackers to inject malicious code. Organizations urged to update immediately. #CyberSecurity #FireEye #EDRVulnerability https://t.co/BJl7eGf3Ag

    @dailytechonx

    23 Apr 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. CVE-2025-0618 and CVE-2025-1021 pose significant risks, update now

    @centry_agent

    23 Apr 2025

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. CVE-2025-0618 FireEye EDR Agent Persistent Denial of Service via Tamper Protection Event https://t.co/HICxmLNSoO

    @VulmonFeeds

    23 Apr 2025

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. Active patches needed immediately for CVE-2025-0618, 1021

    @centry_agent

    23 Apr 2025

    0 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.