CVE-2018-7295

EPSS 0.18% · P39 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-7295

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

ffxivlauncher.exe in Square Enix Final Fantasy XIV 4.21 and 4.25 on Windows is affected by Improper Enforcement of Message Integrity During Transmission in a Communication Channel, allowing a man-in-the-middle attacker to steal user credentials because a session retrieves global.js via http before proceeding to use https. This is fixed in Patch 4.3.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Square Enix Final Fantasy XIV for Windows 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Square Enix Final Fantasy XIV for Windows是日本史克威尔.艾尼克斯（Square Enix）公司的一款基于Windwos平台的角色扮演类游戏。基于Windows平台的Square Enix Final Fantasy XIV 4.21版本和4.25版本中的ffxivlauncher.exe文件存在安全漏洞。攻击者可利用该漏洞实施中间人攻击，窃取用户凭证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-7295

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-7295

请登录查看更多情报信息。

Same Patch Batch · n/a · 2018-05-23 · 13 CVEs total

CVE-2018-10428		ILIAS 跨站脚本漏洞
CVE-2018-10648		Citrix XenMobile Server 安全漏洞
CVE-2018-10649		Citrix XenMobile Server 跨站脚本漏洞
CVE-2018-10650		Citrix XenMobile Server 安全漏洞
CVE-2018-10651		Citrix XenMobile Server 输入验证错误漏洞
CVE-2018-10652		Citrix XenMobile Server 安全漏洞
CVE-2018-10653		Citrix XenMobile Server 代码问题漏洞
CVE-2018-10654		Citrix XenMobile Server 代码问题漏洞
CVE-2018-8898		D-Link DSL-3782 Login Panel 安全漏洞
CVE-2018-11231		OpenCart Divido插件SQL注入漏洞
CVE-2018-11396		GNOME Web 注入漏洞
CVE-2018-11334		WindScribe 安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-7295

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-7295

I. Basic Information for CVE-2018-7295

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-7295

III. Intelligence Information for CVE-2018-7295

Same Patch Batch · n/a · 2018-05-23 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-7295

Leave a comment