CVE-2018-19629

HIGH EXPLOITED

Hyland Perceptive Content Server <7.1.5 - DoS

Title source: llm

Exploitation Summary

CVE-2018-19629 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Excellencedev.

AI-analyzed exploit summary This repository provides a Docker-based test environment and a Python script to demonstrate CVE-2018-19629, a denial-of-service vulnerability in Hyland Perceptive Content Server. The exploit sends a crafted TCP packet containing the 'TNMP' header sequence to crash the ImageNow Server service.

Description

A Denial of Service vulnerability in the ImageNow Server service in Hyland Perceptive Content Server before 7.1.5 allows an attacker to crash the service via a TCP connection.

Exploits (1)

nomisec WORKING POC

by Excellencedev · poc

https://github.com/Excellencedev/CVE-2018-19629

View Code ZIP pw:eip

This repository provides a Docker-based test environment and a Python script to demonstrate CVE-2018-19629, a denial-of-service vulnerability in Hyland Perceptive Content Server. The exploit sends a crafted TCP packet containing the 'TNMP' header sequence to crash the ImageNow Server service.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Hyland Perceptive Content Server < 7.1.5

No auth needed

Prerequisites: Network access to the target server on port 6000

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

https://www.oppositionsecurity.com/imagenow-7-1-4-dos/

Scores

CVSS v3 7.5

EPSS 0.0149

EPSS Percentile 70.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

VulnCheck KEV 2024-05-07

CWE

CWE-20

Status published

Products (1)

hyland/perceptive_content_server < 7.1.5

Published Jul 16, 2019

Tracked Since Feb 18, 2026