CVE-2025-0732 in Discordinfo

Summary

by MITRE • 01/27/2025

A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

01/27/2025

Moderation

accepted

Entry

VDB-293510

CPE

ready

CWE

CWE-426 (confirmed)

CVSS

4.5 (VulDB)

EPSS

0.00213

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-0732
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-0732
CVE Details	https://www.cvedetails.com/cve/CVE-2025-0732/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!