PT-2025-31131 · Microsoft · Windows 11 For Arm64
Published
2025-07-28
·
Updated
2025-07-28
·
CVE-2025-7676
CVSS v4.0
5.4
Medium
| Vector | AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Windows 11 for ARM64 CPU architecture versions prior to 24H2
Description
This issue involves DLL hijacking of all PE32 executables when run on Windows for ARM64 CPU architecture. An attacker can execute code by placing a malicious DLL in the same directory as the executable. Vulnerable versions of Windows 11 for ARM attempt to load Base DLLs from the application directory, which is not standard behavior.
Recommendations
Update to Windows 11 version 24H2.
Fix
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows 11 For Arm64