libretro RetroArch Startup profapi.dll untrusted search path

A vulnerability, which was classified as problematic, has been found in libretro RetroArch up to 1.19.1 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll of the component Startup. The manipulation leads to untrusted search path. An attack has to be approached locally. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

不可信的搜索路径

RetroArch 代码问题漏洞

RetroArch是Libretro开源的一个 Libretro API 的参考前端。 RetroArch 1.19.1之前版本存在代码问题漏洞，该漏洞源于组件Startup profapi.dll中的一些功能会导致不受信任的搜索路径。

N/A

N/A