CVE-2025-14400 | WindScribe 1.81/1.83 Build 20 uncontrolled search path (ZDI-25-1061)

Inserito da Angelo Barbosa | Dic 10, 2025 | CVE

A vulnerability was found in WindScribe 1.81/1.83 Build 20 and classified as problematic. This affects an unknown part. The manipulation results in uncontrolled search path.

This vulnerability is identified as CVE-2025-14400. The attack is only possible with local access. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2025-14400 | WindScribe 1.81/1.83 Build 20 uncontrolled search path (ZDI-25-1061)

Post correlati

CVE-2025-22384 | Optimizely Configured Commerce up to 5.2.2407 external control of assumed-immutable web parameter

CVE-2025-46559 | misskey up to 2025.2.1 Mk:api path traversal

CVE-2023-6610 | Linux Kernel fs/smb/client/smb2ops.c smb2_dump_detail out-of-bounds

CVE-2024-50318 | Ivanti Avalanche up to 6.4.5 null pointer dereference