CVE-2025-15595

Summary

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions.

Affected Software

VendorProductVersion RangeStatus
mlsoftInno Setup0 <= 6.2.1affected
mlsoftInno Setup6.2.2unaffected

Weaknesses

  • CWE-1390: CWE-1390: Weak Authentication

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References