CVE-2025-12247
Hasleo Backup Suite HasleoImageMountService/HasleoBackupSuiteService unquoted search path
A weakness has been identified in Hasleo Backup Suite up to 5.2. Impacted is an unknown function of the component HasleoImageMountService/HasleoBackupSuiteService. This manipulation causes unquoted search path. The attack is restricted to local execution. The attack's complexity is rated as high. The exploitability is considered difficult. The exploit has been made available to the public and could be exploited. Upgrading the affected component is advised.
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P
Productos afectados
Hasleo · Backup Suite¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://github.com/lakshayyverma/CVE-Discovery/blob/main/Halseo%20Backupservice.mdhttps://github.com/lakshayyverma/CVE-Discovery/blob/main/Hasleo%20Backup%20Suite%20ImageMountService.mdhttps://vuldb.com/?ctiid.329918https://vuldb.com/?id.329918https://vuldb.com/?submit.672548https://vuldb.com/?submit.672549https://www.easyuefi.com/backup-software/downloads/Hasleo_Backup_Suite_Free.exe