Cyber Resilience

CVE-2025-0707

HighLPE

Published: 24 January 2025

Published
24 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0019 8.8th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2025-0707 is a high-severity Untrusted Search Path (CWE-426) vulnerability. Its CVSS base score is 8.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique DLL (T1574.001); ranked at the 8.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 CM-6 (Configuration Settings) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-0707 is a critical vulnerability discovered in Rise Group Rise Mode Temp CPU version 2.1, specifically affecting an unknown part of the CRYPTBASE.dll library within the Startup component. Published on January 24, 2025, the issue stems from an untrusted search path flaw, classified under CWE-426, with a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

Exploitation requires local access with low privileges and involves low-complexity manipulation of the untrusted search path, needing no user interaction. A successful attack can result in high impacts to confidentiality, integrity, and availability, potentially allowing the attacker to execute arbitrary code or gain significant control over the affected system.

Advisories published by VulDB provide further details on the vulnerability, including submission and identification records. Security practitioners should consult the following references for mitigation guidance and updates: https://vuldb.com/?ctiid.293235, https://vuldb.com/?id.293235, and https://vuldb.com/?submit.481088.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as critical. This affects an unknown part in the library CRYPTBASE.dll of the component Startup. The manipulation leads to untrusted search path. The attack…

more

needs to be approached locally.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1574.001 DLL Stealth
Adversaries may abuse dynamic-link library files (DLLs) in order to achieve persistence, escalate privileges, and evade defenses.
Why these techniques?

Untrusted search path (CWE-426) in CRYPTBASE.dll startup component directly enables DLL Search Order Hijacking (T1038) for code execution.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-2998Shared CWE-426
CVE-2026-25190Shared CWE-426
CVE-2026-21333Shared CWE-426
CVE-2025-1756Shared CWE-426
CVE-2024-48123Shared CWE-426
CVE-2025-12819Shared CWE-426
CVE-2025-21399Shared CWE-426
CVE-2025-27167Shared CWE-426
CVE-2026-32032Shared CWE-426
CVE-2026-0662Shared CWE-426

Affected Assets

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the untrusted search path vulnerability in CRYPTBASE.dll by requiring timely flaw remediation through patching the affected Startup component.

prevent

Enforces secure configuration settings to restrict DLL search paths to trusted directories, preventing loading of malicious DLLs from untrusted locations.

preventdetect

Verifies the integrity and authenticity of software components like CRYPTBASE.dll, blocking or detecting substitution of malicious DLLs via untrusted search paths.

References