CVE-2025-47809HIGH 8.2EPSS p3.3%

CVE-2025-47809CVE-2025-47809

Description

Wibu CodeMeter before 8.30a sometimes allows privilege escalation immediately after installation (before a logoff or reboot). For exploitation, there must have been an unprivileged installation with UAC, and the CodeMeter Control Center component must be installed, and the CodeMeter Control Center component must not have been restarted. In this scenario, the local user can navigate from Import License to a privileged instance of Windows Explorer.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS0.14% probability of exploitation · percentile 3.3% · 2026-06-19T12:03:05Z
Published2025-05-16
Last modified2026-04-15

Underlying weaknesses· 1

CWE-272

References

  1. https://www.wibu.com/support/security-advisories/wibu-100120.html

1

TypeTargetConfidenceTier
WeaknessLeast Privilege Violationcwe-2720%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-33067
CVE
CVE-2025-67781
CVE
CVE-2025-53795
CVE
CVE-2025-62851
CVE
Microsoft Windows DWM Core Library Use-After-Free Vulnerability
CVE
CVE-2025-36899
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.