CVE-2025-57781
BaseFortify
Publication date: 2025-10-06
Last updated on: 2025-10-06
Assigner: JPCERT/CC
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| denso_ten | drive_recorder_viewer | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-427 | The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the installers of the DENSO TEN drive recorder viewer software. The installer insecurely loads Dynamic Link Libraries (DLLs) from its search path, which can be exploited by an attacker who tricks a user into placing a malicious DLL file in the installer's folder. When the installer runs, it may load this malicious DLL, leading to arbitrary code execution with the privileges of the user running the installer. [1, 2]
How can this vulnerability impact me? :
If exploited, this vulnerability can allow an attacker to execute arbitrary code on your system with the same privileges as the user running the installer. This could lead to unauthorized actions such as installing malware, stealing data, or compromising system integrity. However, no incidents of exploitation have been reported to date. Using the latest installer versions mitigates this risk. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability involves insecure DLL loading by the installer when a malicious DLL is placed in the same folder as the installer. Detection involves checking if any suspicious or unexpected DLL files exist alongside the installer executable before running it. There are no specific commands provided in the resources for detection. A practical approach is to verify the installer folder contents for unknown DLL files and monitor installer execution for unusual behavior or unexpected DLL loads using tools like Process Monitor on Windows. [1, 2]
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, immediately use the latest installer versions provided by DENSO TEN that address the insecure DLL loading issue. Do not run installers from untrusted sources or run installers in folders containing untrusted DLL files. Existing installations are not affected, so reinstallation is not necessary for already installed software. Always download installers from official DENSO TEN download sites and verify their integrity before use. [1, 2]