- Description
- BleachBit cleans files to free disk space and to maintain privacy. BleachBit for Windows up to version 4.6.2 is vulnerable to a DLL Hijacking vulnerability. By placing a malicious DLL with the name uuid.dll in the folder C:\Users\<username>\AppData\Local\Microsoft\WindowsApps\, an attacker can execute arbitrary code every time BleachBit is run. This issue has been patched in version 4.9.0.
- Source
- security-advisories@github.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 7.3
- Impact score
- 5.9
- Exploitability score
- 1.3
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security-advisories@github.com
- CWE-427
- Hype score
- Not currently trending
https://t.co/PMHEFzmNgm Bleachbit update 5.0 Update ASAP on Windows against DLL hijack CVE-2023-47113, CVE-2025-32780
@SaltinDeadsec
6 May 2025
68 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-32780 BleachBit Local Privilege Escalation via DLL Hijacking on Windows https://t.co/5rnYJDFyyh
@VulmonFeeds
15 Apr 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-32780 BleachBit cleans files to free disk space and to maintain privacy. BleachBit for Windows up to version 4.6.2 is vulnerable to a DLL Hijacking vulnerability. By placin… https://t.co/pIb1H1dwbO
@CVEnew
15 Apr 2025
242 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes