cvedb.io
CVE-2025-46713
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2025-05-22T13:15:57.650 · Last modified 2026-06-17T09:26:51.330

Summary

Sandboxie is a sandbox-based isolation software for 32-bit and 64-bit Windows NT-based operating systems. Starting in version 0.0.1 and prior to 1.15.12, API_SET_SECURE_PARAM may have an arithmetic overflow deep in the memory allocation subsystem that would lead to a smaller allocation than requested, and a buffer overflow. Version 1.15.12 fixes the issue.

Affected products

sandboxie-plus — sandboxie

Does this affect you?

Add your gear to cvedb and we'll alert you only when sandboxie-plus ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.