What is CVE-2025-0567?

A low-severity vulnerability has been identified in Epic Games Launcher affecting versions up to 17.2.1. The issue resides in the profapi.dll library, potentially leading to untrusted search paths. Organizations should address this vulnerability during their routine maintenance.

What is the severity of CVE-2025-0567?

CVE-2025-0567 has a severity rating of LOW with a CVSS base score of 2.

CVE-2025-0567 | Low Vulnerability in Epic Games Launcher

A vulnerability classified as problematic was found in Epic Games Launcher up to 17.2.1. This vulnerability affects unknown code in the library profapi.dll of the component Installer. The manipulation leads to untrusted search path. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitation appears to be difficult.

The CVSS score for this vulnerability is 2, categorizing it as low severity. This implies that while it may not pose an immediate threat, it still warrants attention from security teams. Risk to organizations includes potential manipulation of the installation process and local exploitation.

Organizations should address this vulnerability during their routine maintenance. Although the exploitation complexity is high, any untrusted paths could lead to further security risks if left unmitigated.

Currently, this vulnerability is marked as deferred, indicating that it may not have been fully assessed or prioritized for remediation. Therefore, it is crucial for organizations to monitor for updates regarding this vulnerability.

Vulnerability Details

The vulnerability described above is identified as CWE-426, which pertains to untrusted search path. It indicates that an attacker could potentially exploit the system by manipulating the search path for executable files.

The publication date of this vulnerability is January 19, 2025, and it has been last modified on April 15, 2026. Given the nature of this vulnerability, organizations using affected versions of Epic Games Launcher should remain vigilant.

Technical Analysis

The root cause of this vulnerability lies in the use of untrusted search paths within the installer component. The attack vector is local, which requires physical or direct access to the machine, making it less likely to be exploited remotely. However, the attack complexity is high, requiring a knowledgeable attacker.

The privileges required for exploitation are low, but user interaction is not needed for the attack to succeed. The impacts on confidentiality, integrity, and availability are all rated as low, indicating that while there are risks, they do not pose an immediate or severe threat.

Risk & Impact Analysis

Real-world deployment of this vulnerability poses a low risk, as the requirement for local access and the high complexity of the attack serve as barriers to exploitation. Nevertheless, organizations should not dismiss it entirely, as it could lead to potential manipulation of the installation process.

The urgency to address this vulnerability is moderate, given its low CVSS score and deferred status. Organizations should not prioritize this vulnerability above critical issues but should schedule remediation as part of their regular maintenance cycle.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions prior to the vendor patch are affected. Organizations using Epic Games Launcher should ensure they are running the latest version to mitigate potential risks.

Mitigation & Remediation

Organizations should regularly update the Epic Games Launcher to the latest version to ensure that vulnerabilities are patched. If a patch is not available, consider reviewing configurations and implementing access controls to limit local access to systems that use the affected software.

For comprehensive security measures, organizations may also consider penetration testing to evaluate their security posture.

Detection Guidance

To detect potential exploitation attempts, organizations should monitor logs for unusual access patterns or failed access attempts to the profapi.dll library. Additionally, any anomalies in the installation processes should be flagged for further investigation.

AppSecure Threat Intelligence Insight

The long-term significance of this vulnerability lies in its potential to introduce untrusted paths in software installations, which can lead to further vulnerabilities if not addressed. It represents a trend of increasing complexity in local exploitation techniques.

This case highlights the importance of maintaining updated software and implementing robust security practices to mitigate risks. Organizations can learn from this vulnerability to enhance their security frameworks.

For more insights on improving security measures, organizations can refer to the vulnerability management program and the importance of continuous assessments.

Additionally, organizations should consider adopting penetration testing methodologies as part of their proactive security measures.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-0567: Low Vulnerability in Epic Games Launcher