Vulnerability Description
conda-forge openssl-feedstock before 066e83c (2024-05-20), on Microsoft Windows, configures OpenSSL to use an OPENSSLDIR file path that can be written to by non-privilged local users. By writing a specially crafted openssl.cnf file in OPENSSLDIR, a non-privileged local user can execute arbitrary code with the privileges of the user or process loading openssl-feedstock DLLs. Miniforge before 24.5.0 is also affected.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Conda-Forge | Miniforge | < 24.5.0 |
| Conda-Forge | Openssl-Feedstock | < 2024-05-20 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://github.com/conda-forge/openssl-feedstock/commit/066e83c5226bafe90a9c0575Patch
- https://github.com/conda-forge/openssl-feedstock/issues/201ExploitIssue Tracking
FAQ
What is CVE-2025-35471?
CVE-2025-35471 is a vulnerability with a CVSS score of 7.3 (HIGH). conda-forge openssl-feedstock before 066e83c (2024-05-20), on Microsoft Windows, configures OpenSSL to use an OPENSSLDIR file path that can be written to by non-privilged local users. By writing a spe...
How severe is CVE-2025-35471?
CVE-2025-35471 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-35471?
Check the references section above for vendor advisories and patch information. Affected products include: Conda-Forge Miniforge, Conda-Forge Openssl-Feedstock, Microsoft Windows.