CVE-2025-51726HIGH 8.4EPSS p0.9%

CVE-2025-51726CVE-2025-51726

Description

CyberGhostVPNSetup.exe (Windows installer) is signed using the weak cryptographic hash algorithm SHA-1, which is vulnerable to collision attacks. This allows a malicious actor to craft a fake installer with a forged SHA-1 certificate that may still be accepted by Windows signature verification mechanisms, particularly on systems without strict SmartScreen or trust policy enforcement. Additionally, the installer lacks High Entropy Address Space Layout Randomization (ASLR), as confirmed by BinSkim (BA2015 rule) and repeated WinDbg analysis. The binary consistently loads into predictable memory ranges, increasing the success rate of memory corruption exploits. These two misconfigurations, when combined, significantly lower the bar for successful supply-chain style attacks or privilege escalation through fake installers.

Scoring

CVSS 3.18.4 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.10% probability of exploitation · percentile 0.9% · 2026-06-18T12:00:27Z
Published2025-08-04
Last modified2026-04-15

Underlying weaknesses· 1

CWE-327

References

  1. https://github.com/meisterlos/CVE
  2. https://github.com/meisterlos/CVE-2025-51726

1

TypeTargetConfidenceTier
WeaknessUse of a Broken or Risky Cryptographic Algorithmcwe-3270%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-29828
CVE
CVE-2025-59612
CVE
CVE-2026-11604
CVE
CVE-2025-59684
CVE
CVE-2025-25565
CVE
CVE-2025-12106
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.