CVE-2025-7427

CVE-2025-7427: Uncontrolled Search Path Element in Arm Development Studio before 2025

Vendor Arm
Product Development Studio
Weakness CWE-427
Published July 22, 2025
Last update February 26, 2026

CVSS base score

What the vulnerability does

01Description

Uncontrolled Search Path Element in Arm Development Studio before 2025 may allow an attacker to perform a DLL hijacking attack. Successful exploitation could lead to local arbitrary code execution in the context of the user running Arm Development Studio.

Key dates

02Disclosure timeline

July 22, 2025 CVE published
February 26, 2026 Record updated