CNNVD-202512-2039 Information

CNNVD ID

CNNVD-202512-2039

Related CVE

CVE-2025-64721

• CNNVD Published: 2025-12-11

Description (Chinese)

Sandboxie是sandboxie-plus开源的一款基于沙盒的隔离软件。 Sandboxie 1.16.6及之前版本存在输入验证错误漏洞，该漏洞源于未检查溢出，可能导致堆溢出和执行任意代码。

Description (English)

Sandboxie is a sandbox-based segregation software. Sandboxie 1.16.6 and previous versions had input-validation error holes, which stemmed from an uninspected spill, which could result in spills and implementation of any code.

Hazard Level

Low

Vulnerability Type

输入验证错误

Affected Vendor

sandboxie-plus

Published

2025-12-11

Last Modified

2026-02-24

References

https://github.com/sandboxie-plus/Sandboxie/commit/000492f8c411d24292f1b977a107994347bc7dfa https://github.com/sandboxie-plus/Sandboxie/releases/tag/v1.16.7 https://github.com/sandboxie-plus/Sandboxie/security/advisories/GHSA-w476-j57g-96vp

Patch

https://sandboxie-plus.com/downloads/