CVE-2025-11223 PUBLISHED

Assigner: Panasonic_Holdings_Corporation
Reserved: 01.10.2025 Published: 03.10.2025 Updated: 03.10.2025

Installer of

Panasonic

AutoDownloader

version 1.2.8 contains an issue with the DLL search path, which may lead to loading

a crafted DLL file in the same directory.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
CVSS Score: 8.4

Product Status

Vendor Panasonic
Product AutoDownloader
Versions Default: unaffected
  • Version 1.2.8 is affected

References

Problem Types

  • CWE-427 Uncontrolled Search Path Element CWE