CVE-2025-0733

A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search path. An attack has to be approached locally. The complexity of an attack is rather high. The...

ToDesk 代码问题漏洞

ToDesk is a professional remote desktop software from ToDesk China. A code issue vulnerability exists in ToDesk version 4.7.6.3, which stems from an uncontrolled search path for the library profapi.dll in the component DLL File Parser...

Insomnia 代码问题漏洞

Insomnia is an open source, cross-platform API client from Insomnia for GraphQL, REST, WebSockets, server-sent events, and gRPC. A code issue vulnerability exists in Insomnia prior to version 10.3.0 that stems from an issue with profapi.dll containing an untrusted search path...

The vulnerability of the profapi.dll library in the Discord messaging system allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the profapi.dll library in the Discord instant messaging system is related to the use of an unreliable search path. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...

PT-2025-4025 · Postman · Postman

Name of the Vulnerable Software and Affected Versions: Postman versions up to 11.20 Description: A problematic issue has been found in Postman on Windows, affecting an unknown part of the library file profapi.dll. The manipulation leads to an untrusted search path. The attack must be approached...

PT-2025-3959 · Epic Games · Epic Games Launcher

Name of the Vulnerable Software and Affected Versions: Epic Games Launcher versions up to 17.2.1 Description: A vulnerability was found in the Epic Games Launcher, affecting the library profapi.dll of the component Installer. The issue leads to an untrusted search path. Local attack is required,...

Epic Games Launcher 代码问题漏洞

Epic Games Launcher is a game software launcher from Epic Games USA. A code issue vulnerability exists in Epic Games Launcher version 17.2.1 and earlier, which stems from code in the profapi.dll library in the component Installer that can lead to untrusted search paths...

SUSE CVE-2025-0459

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be...

CVE-2025-0459

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be...

CVE-2025-0459 libretro RetroArch Startup profapi.dll untrusted search path

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be...

RetroArch 代码问题漏洞

RetroArch is a reference front-end to the Libretro API open-sourced by Libretro. A code issue vulnerability exists in RetroArch versions prior to 1.19.1, which stems from some functionality in the component Startup profapi.dll that leads to untrusted search paths...

CVE-2017-7327

Yandex Browser installer for Desktop before 17.4.1 has a DLL Hijacking Vulnerability because an untrusted search path is used for dnsapi.dll, winmm.dll, ntmarta.dll, cryptbase.dll or profapi.dll...

Sandboxie installer DLL hijacking vulnerability

Sandboxie is a virtualization software from the American company Sandboxie Holdings. The software supports running other applications in an isolated space and prevents programs from making changes to the system.Sandboxie installer is an installer for Sandboxie. A DLL hijacking vulnerability exist...

CVE-2017-12480

Sandboxie installer 5071703 has a DLL Hijacking or Unsafe DLL Loading Vulnerability via a Trojan horse dwmapi.dll or profapi.dll file in an AppData\Local\Temp directory...