CVE-2025-10475 MEDIUM

CVE-2025-10475: SpyShelter IOCTL SpyShelter.sys denial of service

Vendor N/A
Product SpyShelter
Weakness CWE-404
Published September 15, 2025
Last update September 15, 2025

CVSS base score

6.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A weakness has been identified in SpyShelter up to 15.4.0.1015. Affected is an unknown function in the library SpyShelter.sys of the component IOCTL Handler. This manipulation causes denial of service. The attack needs to be launched locally. The exploit has been made available to the public and could be exploited. Upgrading to version 15.4.0.1028 is able to address this issue. It is advisable to upgrade the affected component.

Key dates

02Disclosure timeline

September 15, 2025 CVE published
September 15, 2025 Record updated