12 matches found
CVE-2025-10199
A local privilege escalation vulnerability exists in Sunshine for Windows version v2025.122.141614 and likely prior versions due to an unquoted service path...
CVE-2025-10198
Sunshine for Windows, version v2025.122.141614, contains a DLL search-order hijacking vulnerability, allowing attackers to insert a malicious DLL in user-writeable PATH directories...
Elevated Privileges and Arbitrary Code Execution issues in Sunshine for Windows v2025.122.141614
Overview Two local security vulnerabilities have been identified in Sunshine for Windows, version v2025.122.141614 and likely prior versions. These issues could allow attackers to execute arbitrary code and escalate privileges on affected systems. Description Sunshine is a self-hosted game stream...
CVE-2025-10199
A local privilege escalation vulnerability exists in Sunshine for Windows version v2025.122.141614 and likely prior versions due to an unquoted service path...
CVE-2025-10199
A local privilege escalation vulnerability exists in Sunshine for Windows version v2025.122.141614 and likely prior versions due to an unquoted service path...
CVE-2025-10198
Sunshine for Windows, version v2025.122.141614, contains a DLL search-order hijacking vulnerability, allowing attackers to insert a malicious DLL in user-writeable PATH directories...
CVE-2025-10199 A local privilege escalation vulnerability exists in LizardBytes' Sunshine for Windows
A local privilege escalation vulnerability exists in Sunshine for Windows version v2025.122.141614 and likely prior versions due to an unquoted service path...
CVE-2025-10199 A local privilege escalation vulnerability exists in LizardBytes' Sunshine for Windows
A local privilege escalation vulnerability exists in Sunshine for Windows version v2025.122.141614 and likely prior versions due to an unquoted service path...
CVE-2025-10199
Sunshine for Windows (v2025.122.141614 and likely earlier) contains two local privilege escalation issues: CVE-2025-10198 (unquoted service path) and CVE-2025-10199 (DLL search-order hijacking). The unquoted service path allows a local attacker to place a malicious executable in a path used by th...
CVE-2025-10198 LizardBytes Sunshine for Windows contains a DLL search-order hijacking vulnerability
Sunshine for Windows, version v2025.122.141614, contains a DLL search-order hijacking vulnerability, allowing attackers to insert a malicious DLL in user-writeable PATH directories...
CVE-2025-10198
Sunshine for Windows v2025.122.141614 has CVE-2025-10198 (DLL search-order hijacking) and related Unquoted Service Path issues that could allow a local attacker to load a malicious DLL from user-writable PATH directories or escalate privileges via an unquoted service path. Impact is described as ...
PT-2025-36904
Name of the Vulnerable Software and Affected Versions: Sunshine for Windows version v2025.122.141614 Description: Sunshine for Windows version v2025.122.141614 contains a DLL search-order hijacking vulnerability. This allows attackers to insert a malicious DLL into user-writable PATH directories...