CVE-2025-53395 HIGH

CVE-2025-53395

Vendor N/A
Product n/a
Published August 4, 2025
Last update August 5, 2025

CVSS base score

7.7/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AC:L/AV:L/A:H/C:H/I:H/PR:H/S:C/UI:R

What the vulnerability does

01Description

Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx file, Reflect loads the attacker's VSSSvr.dll after the mount completes. This occurs because of untrusted DLL search path behavior in ReflectMonitor.exe.

Key dates

02Disclosure timeline

August 4, 2025 CVE published
August 5, 2025 Record updated