Ghostwire

CVE-2018-25264: TransMac 12.2 contains a buffer overflow vulnerability in the license key input field that allows local attackers to...

MEDIUM CVSS 6.2 Exploit Available

Published: April 26, 2026 | Last Modified: April 26, 2026

Description

TransMac 12.2 contains a buffer overflow vulnerability in the license key input field that allows local attackers to crash the application by submitting an oversized string. Attackers can generate a payload file containing 4000 bytes of data, paste it into the License Key field, and trigger a denial of service condition.

Ghostwire Analysis — What This Means Practically

Medium CVSS score indicates moderate risk — exploitation requires specific conditions or results in limited impact.
Exploit code is reported to be available, increasing the likelihood of active exploitation.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

References

www.exploit-db.com/exploits/45493
www.vulncheck.com/advisories/transmac-denial-of-service-via-license-key-field
www.tenable.com/cve/CVE-2018-25264
www.cnnvd.org.cn/home/globalSearch?keyword=CVE-2018-25264