CVE-2025-4769
7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Summary
A vulnerability classified as critical was found in CBEWIN Anytxt Searcher 1.3.1128.0. This vulnerability affects unknown code of the file ATService.exe. The manipulation leads to uncontrolled search path. The attack needs to be approached locally. The complexity of an attack is rather high. The exploitation appears to be difficult.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| CBEWIN | Anytxt Searcher | 1.3.1128.0 | affected |
Weaknesses
- CWE-427: Uncontrolled Search Path
- CWE-426: Untrusted Search Path
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://vuldb.com/?id.309070
- https://vuldb.com/?ctiid.309070
- https://vuldb.com/?submit.571820
- https://www.yuque.com/ba1ma0-an29k/nnxoap/ds2f8b1hdc4ng9zg?singleDoc
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.