CVE-2025-1804

Name of the Vulnerable Software and Affected Versions Blizzard Battle.Net versions up to 2.39.0.15212

Description A critical issue was found in Blizzard Battle.Net, affecting some unknown functionality in the library profapi.dll. The manipulation leads to an uncontrolled search path. The attack needs to be approached locally and has a rather high complexity, making exploitation difficult.

Recommendations For versions up to 2.39.0.15212, as a temporary workaround, consider restricting access to the profapi.dll library until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.