Vulnerabilities

CVE-2025-10215

by Fred · 10/09/2025

DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allows attackers with local access to execute arbitrary code by placing a FREngine.dll file of their choice in the ‘C:UsersPublicAppDataLocalUPDFFREngineBin64’ directory, which could lead to arbitrary code execution and persistence.

More information : https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-updf

Similar

Tags: Cybersecurity Alert