{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-66687", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-17T13:55:53.024Z", "dateReserved": "2025-12-08T00:00:00.000Z", "datePublished": "2026-03-16T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-16T16:53:51.935Z"}, "descriptions": [{"lang": "en", "value": "Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files"}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/nstlaurent/DoomLauncher/issues/369"}, {"url": "https://jeroscope.com/advisories/2025/jero-2025-014/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-22", "lang": "en", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-17T13:55:01.043223Z", "id": "CVE-2025-66687", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T13:55:53.024Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-66687", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-17T13:55:01.043223Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T13:55:47.353Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://github.com/nstlaurent/DoomLauncher/issues/369"}, {"url": "https://jeroscope.com/advisories/2025/jero-2025-014/"}], "descriptions": [{"lang": "en", "value": "Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-16T16:53:51.935Z"}}}, "cveMetadata": {"cveId": "CVE-2025-66687", "state": "PUBLISHED", "dateUpdated": "2026-03-17T13:55:53.024Z", "dateReserved": "2025-12-08T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-16T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Doom Launcher 3.8.1.0 is vulnerable to Directory Traversal due to missing file path validation during the extraction of game files"}, {"lang": "es", "value": "Doom Launcher 3.8.1.0 es vulnerable a salto de directorio debido a la falta de validaci\u00f3n de la ruta de archivo durante la extracci\u00f3n de archivos de juego."}], "id": "CVE-2025-66687", "lastModified": "2026-04-27T19:18:46.690", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-16T18:16:04.657", "references": [{"source": "cve@mitre.org", "url": "https://github.com/nstlaurent/DoomLauncher/issues/369"}, {"source": "cve@mitre.org", "url": "https://jeroscope.com/advisories/2025/jero-2025-014/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "3.8.1.0"}}], "enrichment": {"confidence": 90.0, "confidence_source": "inferred", "scores": [{"score": 90.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "doom_launcher", "vendor": "nstlaurent"}], "analysis": {"en": {"generated_at": "2026-03-17T17:16:21.841759+00:00", "value": {"mitigation_remediation": ["Update Doom Launcher to the latest available release that addresses the path traversal flaw.", "If a patch is not yet available, perform game file extraction in a sandboxed environment with restricted file system access.", "Manually validate extracted file paths before they are written to disk to ensure they remain within the intended directory.", "Continue to monitor vendor advisories for a formal fix and apply it promptly when released."], "summary": {"action": "Apply Patch", "impact": "Directory Traversal"}, "threat_synthesis": {"affected_systems": "The only affected product listed in the advisory is Doom Launcher version 3.8.1.0. No vendor or additional version information is provided.", "description_and_impact": "The vulnerability exists in Doom Launcher version 3.8.1.0 as a result of missing file path validation during the extraction of game files. An attacker can craft a malicious archive that contains file paths which traverse directories, allowing the extraction routine to write files outside the intended extraction directory. This represents a path traversal weakness, identified as CWE-22, with potential impact of reading or overwriting arbitrary files on the host system.", "risk_and_exploitability": "The CVSS base score of 7.5 indicates a high severity vulnerability. The EPSS score of less than 1% suggests that exploitation is unlikely in the wild. This issue is not currently listed in the CISA KEV catalog. The exact attack vector is not detailed in the provided information. It can be inferred that exploitation requires a crafted archive to be processed by the extraction routine; this may occur locally when a user runs the launcher or remotely if untrusted archives are downloaded from a network source. The inference about the delivery method is explicitly noted because the input does not specify it."}}}}, "created": "2026-03-17T09:55:32.171912+00:00", "title": "Directory Traversal Vulnerability in Doom Launcher 3.8.1.0 During Game File Extraction", "updated": "2026-03-23T14:00:55.444956+00:00", "vendors": ["nstlaurent", "nstlaurent$PRODUCT$doom_launcher"]}