CVE-2025-10475

medium

Description

A weakness has been identified in SpyShelter up to 15.4.0.1015. Affected is an unknown function in the library SpyShelter.sys of the component IOCTL Handler. This manipulation causes denial of service. The attack needs to be launched locally. The exploit has been made available to the public and could be exploited. Upgrading to version 15.4.0.1028 is able to address this issue. It is advisable to upgrade the affected component.

References

https://www.yuque.com/u28538081/sea4q5/aokhgdfpf5ueguk5

https://www.spyshelter.com/help/SpyShelter-Changelog#15401028-3sep2025

https://vuldb.com/?submit.648484

https://vuldb.com/?id.323906

https://vuldb.com/?ctiid.323906

Details

Source: Mitre, NVD

Published: 2025-09-15

Updated: 2026-04-29

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

CVSS v4

Base Score: 6.8

Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Severity: Medium

EPSS

EPSS: 0.00011