CVE-2025-53394
BaseFortify
Publication date: 2025-08-04
Last updated on: 2025-08-05
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| paramount | macrium_reflect | 3.1 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-427 | The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
If exploited, this vulnerability can allow an attacker to run arbitrary code with administrator privileges on the affected system. This means the attacker could potentially take full control of the system, leading to data theft, system manipulation, installation of malware, or disruption of services.
Can you explain this vulnerability to me?
This vulnerability in Paramount Macrium Reflect allows attackers to execute arbitrary code with administrator privileges by using a specially crafted backup file (.mrimgx or .mrbax) along with a renamed executable placed in the same directory. When an administrator opens and mounts the crafted backup file, the software launches the renamed executable controlled by the attacker due to insufficient validation of companion files during the mounting process.