CVE-2025-1804
CVE-2025-1804
Título es
CVE-2025-1804
Sáb, 01/03/2025 – 19:15
Tipo
CWE-426
Gravedad v2.0
6.00
Gravedad 2.0 Txt
MEDIUM
Título en
CVE-2025-1804
Descripción en
A vulnerability was found in Blizzard Battle.Net up to 2.39.0.15212 on Windows and classified as critical. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to uncontrolled search path. The attack needs to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult.
01/03/2025
01/03/2025
Vector CVSS:4.0
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Vector CVSS:3.1
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector CVSS:2.0
AV:L/AC:H/Au:S/C:C/I:C/A:C
Gravedad 4.0
7.30
Gravedad 4.0 txt
HIGH
Gravedad 3.1 (CVSS 3.1 Base Score)
7.00
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
HIGH
Referencias
https://vuldb.com/?ctiid_298040=
https://vuldb.com/?id_298040=
https://vuldb.com/?submit_485034=
Enviar en el boletín
Off
