CVE-2025-0459 in RetroArchinfo

Summary

by MITRE • 01/14/2025

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be approached locally. The vendor was contacted early about this disclosure but did not respond in any way.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

01/14/2025

Moderation

accepted

Entry

VDB-291476

CPE

ready

CWE

CWE-426 (confirmed)

CVSS

5.3 (VulDB)

EPSS

0.00082

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-0459
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-0459
CVE Details	https://www.cvedetails.com/cve/CVE-2025-0459/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!