CVE-2018-10608

HIGH

SEL AcSELerator Architect <2.2.24.0 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-10608. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service (DoS) vulnerability in SEL AcSELerator Architect 2.2.24 by sending a large payload of repeated bytes to exhaust CPU resources. The script sets up a listener on port 2121 and sends the payload to any connecting client.

Description

SEL AcSELerator Architect version 2.2.24.0 and prior can be exploited when the AcSELerator Architect FTP client connects to a malicious FTP server, which may cause denial of service via 100% CPU utilization. Restart of the application is required.

Exploits (1)

exploitdb WORKING POC
by LiquidWorm · pythondoswindows
https://www.exploit-db.com/exploits/46859

This exploit demonstrates a denial-of-service (DoS) vulnerability in SEL AcSELerator Architect 2.2.24 by sending a large payload of repeated bytes to exhaust CPU resources. The script sets up a listener on port 2121 and sends the payload to any connecting client.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: SEL AcSELerator Architect 2.2.24.0
No auth needed
Prerequisites: Network access to the target system · Target application running and accessible
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-18-191-02

Scores

CVSS v3 7.5
EPSS 0.0782
EPSS Percentile 93.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-400
Status published
Products (1)
selinc/acselerator_architect < 2.2.24.0
Published Jul 24, 2018
Tracked Since Feb 18, 2026