Skip to main content

Bluestacks

6 CVEs product

Monthly

CVE-2019-25548 MEDIUM POC This Month

BlueStacks 4.80.0.1060 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input to the search field. Rated medium severity (CVSS 6.9), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Bluestacks
NVD Exploit-DB
CVSS 4.0
6.9
EPSS
0.0%
CVE-2025-44964 LOW Monitor

A lack of SSL certificate validation in BlueStacks v5.20 allows attackers to execute a man-it-the-middle attack and obtain sensitive information. Rated low severity (CVSS 3.9). No vendor patch available.

Information Disclosure Bluestacks
NVD
CVSS 3.1
3.9
EPSS
0.0%
CVE-2020-24367 HIGH PATCH This Week

Incorrect file permissions in BlueStacks 4 through 4.230 on Windows allow a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Permission Assignment vulnerability could allow attackers to access resources due to misconfigured permissions.

Privilege Escalation Microsoft Bluestacks
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2019-14220 MEDIUM PATCH This Month

An issue was discovered in BlueStacks 4.110 and below on macOS and on 4.120 and below on Windows. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Microsoft Apple Google Bluestacks
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2018-0701 HIGH This Week

BlueStacks App Player (BlueStacks App Player for Windows 3.0.0 to 4.31.55, BlueStacks App Player for macOS 2.0.0 and later) allows an attacker on the same network segment to bypass access restriction. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Apple Bluestacks
NVD
CVSS 3.0
8.8
EPSS
0.6%
CVE-2016-4288 HIGH POC This Week

A local privilege escalation vulnerability exists in BlueStacks App Player. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Bluestacks
NVD
CVSS 3.0
8.4
EPSS
0.1%
EPSS 0% CVSS 6.9
MEDIUM POC This Month

BlueStacks 4.80.0.1060 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input to the search field. Rated medium severity (CVSS 6.9), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Bluestacks
NVD Exploit-DB
EPSS 0% CVSS 3.9
LOW Monitor

A lack of SSL certificate validation in BlueStacks v5.20 allows attackers to execute a man-it-the-middle attack and obtain sensitive information. Rated low severity (CVSS 3.9). No vendor patch available.

Information Disclosure Bluestacks
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Incorrect file permissions in BlueStacks 4 through 4.230 on Windows allow a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Permission Assignment vulnerability could allow attackers to access resources due to misconfigured permissions.

Privilege Escalation Microsoft Bluestacks
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

An issue was discovered in BlueStacks 4.110 and below on macOS and on 4.120 and below on Windows. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Microsoft Apple +2
NVD
EPSS 1% CVSS 8.8
HIGH This Week

BlueStacks App Player (BlueStacks App Player for Windows 3.0.0 to 4.31.55, BlueStacks App Player for macOS 2.0.0 and later) allows an attacker on the same network segment to bypass access restriction. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Microsoft Apple +1
NVD
EPSS 0% CVSS 8.4
HIGH POC This Week

A local privilege escalation vulnerability exists in BlueStacks App Player. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Bluestacks
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy