System	Score	Found at
cvssv3	7.8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18634.json
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87468	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.87602	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.88561	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
epss	0.88561	https://api.first.org/data/v1/epss?cve=CVE-2019-18634
cvssv3.1	8.8	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
archlinux	High	https://security.archlinux.org/AVG-1093

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18634.json
		https://api.first.org/data/v1/epss?cve=CVE-2019-18634
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1796944		https://bugzilla.redhat.com/show_bug.cgi?id=1796944
950371		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950371
ASA-202002-2		https://security.archlinux.org/ASA-202002-2
AVG-1093		https://security.archlinux.org/AVG-1093
CVE-2019-18634	Exploit	https://github.com/Plazmaz/CVE-2019-18634/blob/b348e738a83fd4180b3ec26ed216535547f3bb8a/self-contained.sh
CVE-2019-18634	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47995.txt
CVE-2019-18634	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/48052.sh
GLSA-202003-12		https://security.gentoo.org/glsa/202003-12
RHSA-2020:0487		https://access.redhat.com/errata/RHSA-2020:0487
RHSA-2020:0509		https://access.redhat.com/errata/RHSA-2020:0509
RHSA-2020:0540		https://access.redhat.com/errata/RHSA-2020:0540
RHSA-2020:0726		https://access.redhat.com/errata/RHSA-2020:0726
USN-4263-1		https://usn.ubuntu.com/4263-1/
USN-4263-2		https://usn.ubuntu.com/4263-2/

Data source	Exploit-DB
Date added	Feb. 11, 2020
Description	Sudo 1.8.25p - 'pwfeedback' Buffer Overflow
Ransomware campaign use	Unknown
Source publication date	Feb. 6, 2020
Exploit type	local
Platform	linux
Source update date	Aug. 20, 2020
Source URL	https://github.com/Plazmaz/CVE-2019-18634/blob/b348e738a83fd4180b3ec26ed216535547f3bb8a/self-contained.sh

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18634.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.99455
EPSS Score	0.87468
Published At	April 7, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:00:48.743709+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/202003-12	38.0.0