CVE-2018-25284— HD Tune Pro 5.70 Denial of Service via Options Dialog

CVSS 6.2 · Medium EPSS 0.01% · P3 Updated Apr 28, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-25284

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

HD Tune Pro 5.70 Denial of Service via Options Dialog

Source: NVD (National Vulnerability Database)

Vulnerability Description

HD Tune Pro 5.70 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the folder/file name field. Attackers can trigger a denial of service by entering a 6000-byte payload through the File > Options > Save dialog's folder/file name input field.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)

Source: NVD (National Vulnerability Database)

Vulnerability Title

HD Tune Pro 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HD Tune Pro是HD Tune公司的一款用于检测硬盘性能、健康状态及错误的磁盘分析工具。 HD Tune Pro 5.70版本存在安全漏洞，该漏洞源于文件夹/文件名输入字段提交超长字符串时存在缓冲区溢出，可能导致本地攻击者通过File > Options > Save对话框的文件夹/文件名输入字段输入6000字节有效载荷触发拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Hdtune	HD Tune Pro	5.70	-

II. Public POCs for CVE-2018-25284

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-25284

请登录查看更多情报信息。

HD Tune Pro 5.70 - Denial of Service (PoC) - Windows_x86 dos Exploitexploit
HD Tune websiteproduct
HD Tune websiteproduct
HD Tune Pro 5.70 Denial of Service via Options Dialog | Advisories | VulnCheckthird-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2018-25284

Same Patch Batch · Hdtune · 2026-04-26 · 3 CVEs total

CVE-2018-25286	6.2 MEDIUM	Easy PhotoResQ 1.0 Buffer Overflow Denial of Service
CVE-2018-25287	5.5 MEDIUM	Drive Power Manager 1.10 Denial of Service via Name Field

IV. Related Vulnerabilities

Same vendor: Hdtune

Same weakness: CWE-120

V. Comments for CVE-2018-25284

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-25284— HD Tune Pro 5.70 Denial of Service via Options Dialog

I. Basic Information for CVE-2018-25284

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-25284

III. Intelligence Information for CVE-2018-25284

Same Patch Batch · Hdtune · 2026-04-26 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-25284

Leave a comment