CVE-2025-0733 | Postman up to 11.20 on Windows profapi.dll untrusted search path

A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search path.

This vulnerability is uniquely identified as CVE-2025-0733. An attack has to be approached locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-0733 | Postman up to 11.20 on Windows profapi.dll untrusted search path

Post correlati

CVE-2024-52899 | IBM Data Virtualization Manager for zOS 1.1/1.2 JDBC URL Parameter code injection

CVE-2024-39174 | yzmcms 7.1 Publish Article cross site scripting

CVE-2024-13642 | jetmonsters Stratum Plugin up to 1.4.7 on WordPress cross site scripting

CVE-2023-49047 | Tenda AX1803 1.0.0.1 formSetDeviceName devName stack-based overflow