{"id":"CVE-2025-10198","details":"Sunshine for Windows, version v2025.122.141614, contains a DLL search-order hijacking vulnerability, allowing attackers to insert a malicious DLL in user-writeable PATH directories.","modified":"2026-04-12T17:35:45.383793Z","published":"2025-09-09T18:15:31.743Z","references":[{"type":"WEB","url":"https://www.kb.cert.org/vuls/id/974249"},{"type":"REPORT","url":"https://github.com/LizardByte/Sunshine/pull/3971"},{"type":"FIX","url":"https://github.com/LizardByte/Sunshine/commit/9db11a906167bd962e57896223d7b9718058aeb2"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/lizardbyte/sunshine","events":[{"introduced":"0"},{"last_affected":"64544e7960f5141f71438d72e5dedad81c03729c"},{"fixed":"9db11a906167bd962e57896223d7b9718058aeb2"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2025.122.141614"}]}}],"versions":["v0.1.0","v0.1.1","v0.10.0","v0.11.0","v0.11.1","v0.2.0","v0.3.0","v0.3.1","v0.4.0","v0.8.0","v0.9.0","v2025.118.151840","v2025.122.141614"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-10198.json","vanir_signatures":[{"deprecated":false,"signature_type":"Function","signature_version":"v1","source":"https://github.com/lizardbyte/sunshine/commit/9db11a906167bd962e57896223d7b9718058aeb2","target":{"function":"main","file":"src/main.cpp"},"id":"CVE-2025-10198-029d07ee","digest":{"function_hash":"173857910649550143340615180877149951341","length":6596}},{"deprecated":false,"signature_type":"Line","signature_version":"v1","source":"https://github.com/lizardbyte/sunshine/commit/9db11a906167bd962e57896223d7b9718058aeb2","target":{"file":"src/main.cpp"},"id":"CVE-2025-10198-085081a8","digest":{"line_hashes":["311497784284299362687893600935622322315","296237520580625570603371200251519921245","301519307986431331420288975825666489773","107318335586637839838753141760939448529"],"threshold":0.9}}],"vanir_signatures_modified":"2026-04-12T17:35:45Z"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}