CVE-2025-62776

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions WTW EAGLE (for Windows) version 3.0.8.0

Description The installer for WTW EAGLE (for Windows) has a DLL search path issue that could allow for the insecure loading of Dynamic Link Libraries. This could potentially lead to the execution of arbitrary code with the privileges of the running application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2025-62776

Affected Products

Wtw Eagle

CVE-2025-62776

Weakness Enumeration

Related Identifiers

Affected Products

References · 6