CVE-2025-0733 in Postmaninfo

Summary

by MITRE • 01/27/2025

A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search path. An attack has to be approached locally. The complexity of an attack is rather high. The exploitability is told to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

01/27/2025

Moderation

accepted

Entry

VDB-293511

CPE

ready

CWE

CWE-426 (confirmed)

CVSS

4.5 (VulDB)

EPSS

0.00213

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-0733
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-0733
CVE Details	https://www.cvedetails.com/cve/CVE-2025-0733/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!