CVE-2025-0618 is a critical flaw in FireEye’s EDR agent that allows remote attackers to disable tamper protection and cause persistent denial-of-service, even after system reboots. Discovered by Trellix, the issue stems from improper event handling, and users are urged to monitor logs, isolate affected systems, and apply patches to prevent exploitation.

‍