CVE-2025-10199

Description

A local privilege escalation vulnerability exists in Sunshine for Windows (version v2025.122.141614 and likely prior versions) due to an unquoted service path.

PUBLISHED Reserved 2025-09-09 | Published 2025-09-09 | Updated 2025-11-03 | Assigner certcc

Problem types

CWE-428: Unquoted Search Path or Element

Product status

References

www.kb.cert.org/vuls/id/974249

github.com/...nshine/security/advisories/GHSA-r3rw-mx4q-7vfp

cve.org (CVE-2025-10199)

nvd.nist.gov (CVE-2025-10199)

Download JSON