Skip to main content

Bandizip

2 CVEs product

Monthly

CVE-2025-33027 MEDIUM This Month

In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Bandizip
NVD GitHub
CVSS 3.1
6.1
EPSS
0.2%
CVE-2014-1680 MEDIUM POC This Month

Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. Rated medium severity (CVSS 6.9). Public exploit code available and no vendor patch available.

Information Disclosure Bandizip
NVD
CVSS 2.0
6.9
EPSS
0.1%
EPSS 0% CVSS 6.1
MEDIUM This Month

In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Bandizip
NVD GitHub
EPSS 0% CVSS 6.9
MEDIUM POC This Month

Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. Rated medium severity (CVSS 6.9). Public exploit code available and no vendor patch available.

Information Disclosure Bandizip
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy