Home > Vulnerability Database > CVE-2025-26624

Mend.io Vulnerability Database

CVE-2025-26624

Date: February 18, 2025

Rufus is a utility that helps format and create bootable USB flash drives. A DLL hijacking vulnerability in Rufus 4.6.2208 and earlier versions allows an attacker loading and executing a malicious DLL with escalated privileges (since the executable has been granted higher privileges during the time of launch) due to the ability to inject a malicious "cfgmgr32.dll" in the same directory as the executable and have it side load automatically. This is fixed in commit "74dfa49", which will be part of version 4.7. Users are advised to upgrade as soon as version 4.7 becomes available. There are no known workarounds for this vulnerability.

Severity Score

6.6

Related Resources (4)

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-26624

Url: https://github.com/pbatard/rufus/commit/74dfa49707fd626b58d776d3400295740a29e23e

Url: https://github.com/pbatard/rufus/security/advisories/GHSA-p8p5-r296-g2jv

Url: https://www.mend.io/vulnerability-database/CVE-2025-26624

Severity Score

6.6

Weakness Type (CWE)

Uncontrolled Search Path Element

CWE-427

Untrusted Search Path

CWE-426

CVSS v3.1

Base Score:	6.6
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	NONE

Mend.io Vulnerability Database

We found results for “”

CVE-2025-26624

Date: February 18, 2025

Severity Score

Related Resources (4)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?