Description
ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers can paste a 2000-byte buffer of repeated characters into the IP field and trigger a search operation to cause an application crash.
Published: 2026-04-26
Score: 6.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service
Action: Apply Patch
AI Analysis

Impact

ObserverIP Scan Tool version 1.4.0.1 is vulnerable to a denial‑of‑service condition that can be triggered by submitting an excessively long string to the IP input field. By entering a 2000‑byte payload of repeated characters and initiating a search, a local attacker can cause the application to crash. The flaw is a classic out‑of‑bounds buffer overflow as identified by CWE‑789, resulting in loss of availability for any process depending on the tool.

Affected Systems

The affected product is ObserverIP Scan Tool 1.4.0.1 from vendor P10. No other versions are listed in the CNA data; remediation applies to this exact build.

Risk and Exploitability

The CVSS score of 6.9 indicates moderate severity, but the EPSS score of less than 1 % and the absence from the CISA KEV catalog imply a low likelihood of exploitation in the wild. The vulnerability can only be exercised by an attacker with local access to the machine running the tool. Exploitation requires no special privileges; merely delivering the oversized input suffices to crash the application and deny service to users who rely on it.

Generated by OpenCVE AI on April 28, 2026 at 05:09 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install a patched version of ObserverIP Scan Tool that eliminates the buffer overflow.
  • Restrict local system access so that only trusted users can run ObserverIP Scan Tool.
  • If a patch is unavailable, remove the application from the network to prevent local denial of service attempts.

Generated by OpenCVE AI on April 28, 2026 at 05:09 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 27 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared P10
P10 observerip Scan Tool
Vendors & Products P10
P10 observerip Scan Tool
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Sun, 26 Apr 2026 13:30:00 +0000

Type Values Removed Values Added
Description ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers can paste a 2000-byte buffer of repeated characters into the IP field and trigger a search operation to cause an application crash.
Title ObserverIP Scan Tool 1.4.0.1 Denial of Service via IP Field
Weaknesses CWE-789
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

P10 Observerip Scan Tool
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-27T20:09:58.154Z

Reserved: 2026-04-26T13:11:18.273Z

Link: CVE-2018-25295

cve-icon Vulnrichment

Updated: 2026-04-27T20:09:54.264Z

cve-icon NVD

Status : Deferred

Published: 2026-04-26T22:17:30.957

Modified: 2026-04-27T18:53:00.053

Link: CVE-2018-25295

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T05:15:22Z

Weaknesses