Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/24 5:18 p.m.21 views

CVE-2025-46716

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiSetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to read...

5.5CVSS6.8AI score0.00189EPSS
Exploits1References1
NVD
NVD
added 2025/05/22 5:15 p.m.14 views

CVE-2025-46716

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiSetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to read...

5.5CVSS0.00189EPSS
Exploits1References1
CVE
CVE
added 2025/05/22 4:50 p.m.54 views

CVE-2025-46716

CVE-2025-46716 affects Sandboxie (Sandboxie or Sandboxie-plus) for Windows. The issue is in Api_SetSecureParam, which prior to v1.15.12 fails to sanitize incoming pointers and implicitly trusts the user-supplied pointer. As a result, SetRegValue can read an arbitrary address (potentially a kernel...

5.5CVSS5.4AI score0.00189EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/22 4:50 p.m.11 views

CVE-2025-46716 Sandboxie Arbitrary Kernel Read in SbieDrv.sys API (API_SET_SECURE_PARAM)

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiSetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to read...

5.5CVSS5.4AI score0.00189EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/22 4:50 p.m.24 views

CVE-2025-46716 Sandboxie Arbitrary Kernel Read in SbieDrv.sys API (API_SET_SECURE_PARAM)

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiSetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to read...

5.5CVSS0.00189EPSS
Exploits1References1
OSV
OSV
added 2025/05/22 4:50 p.m.5 views

CVE-2025-46716 Sandboxie Arbitrary Kernel Read in SbieDrv.sys API (API_SET_SECURE_PARAM)

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 1.3.0 and prior to version 1.15.12, ApiSetSecureParam fails to sanitize incoming pointers, and implicitly trusts that the pointer the user has passed in is safe to read...

5.5CVSS6.8AI score0.00189EPSS
Exploits1References3
Rows per page
Query Builder