{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-69689", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-27T17:55:25.864Z", "dateReserved": "2026-01-09T00:00:00.000Z", "datePublished": "2026-04-27T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-27T17:36:59.223Z"}, "descriptions": [{"lang": "en", "value": "The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog. The dialog processes user-supplied paths with elevated permissions, which can be exploited by a local attacker to perform actions with administrator-level privileges."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://getfancontrol.com"}, {"url": "https://github.com/Rem0o/FanControl.Releases"}, {"url": "https://github.com/Rem0o/FanControl.Releases/releases/tag/V251"}, {"url": "https://gist.github.com/ahrixia/7c89bb3f1af6e85aeedde5ddb557a529"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-269", "lang": "en", "description": "CWE-269 Improper Privilege Management"}]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-27T17:54:03.256328Z", "id": "CVE-2025-69689", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T17:55:25.864Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-69689", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-27T17:54:03.256328Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-27T17:52:34.722Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://getfancontrol.com"}, {"url": "https://github.com/Rem0o/FanControl.Releases"}, {"url": "https://github.com/Rem0o/FanControl.Releases/releases/tag/V251"}, {"url": "https://gist.github.com/ahrixia/7c89bb3f1af6e85aeedde5ddb557a529"}], "descriptions": [{"lang": "en", "value": "The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog. The dialog processes user-supplied paths with elevated permissions, which can be exploited by a local attacker to perform actions with administrator-level privileges."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-27T17:36:59.223Z"}}}, "cveMetadata": {"cveId": "CVE-2025-69689", "state": "PUBLISHED", "dateUpdated": "2026-04-27T17:55:25.864Z", "dateReserved": "2026-01-09T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-27T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Fan Control application V251 contains an improper privilege handling vulnerability in its Open File Dialog. The dialog processes user-supplied paths with elevated permissions, which can be exploited by a local attacker to perform actions with administrator-level privileges."}], "id": "CVE-2025-69689", "lastModified": "2026-04-27T18:57:20.293", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.0, "impactScore": 6.0, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-27T18:16:53.160", "references": [{"source": "cve@mitre.org", "url": "https://getfancontrol.com"}, {"source": "cve@mitre.org", "url": "https://gist.github.com/ahrixia/7c89bb3f1af6e85aeedde5ddb557a529"}, {"source": "cve@mitre.org", "url": "https://github.com/Rem0o/FanControl.Releases"}, {"source": "cve@mitre.org", "url": "https://github.com/Rem0o/FanControl.Releases/releases/tag/V251"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-269"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "V251"}}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "fan_control", "vendor": "rem0o"}], "analysis": {"en": {"generated_at": "2026-04-28T13:15:09.972282+00:00", "value": {"mitigation_remediation": ["Upgrade to the most recent fan control release that addresses the privilege handling flaw.", "Restrict local user accounts from launching the application or disable the Open File Dialog for non\u2011administrator users to limit potential exploitation.", "Configure the operating system to enforce least privilege, ensuring the application runs with the minimal rights required and does not allow unrestricted file access even when the user supplies a path."], "summary": {"action": "Assess Impact", "impact": "Local Privilege Escalation"}, "threat_synthesis": {"affected_systems": "The affected product is the Fan Control application, specifically version V251. No vendor information is publicly available in the advisory, but the application is hosted on GitHub and appears to be a standalone desktop tool. Because the vulnerability is tied to a specific release, only installations of V251 are directly impacted; earlier or later versions may not contain the flaw, but the advisory does not provide explicit version ranges.", "description_and_impact": "The Fan Control application V251 allows a local user to supply a file path in the Open File Dialog that is processed with elevated permissions. This improper privilege handling enables the user to execute actions with administrator\u2011level access, effectively leaking administrative privileges to an otherwise non\u2011privileged user. The vulnerability is a classic example of CWE\u2011269, where privileged operations are performed by a process that may be exploited by a local adversary to compromise the confidentiality, integrity, and availability of the system.", "risk_and_exploitability": "The vulnerability carries a CVSS score of 8.8, indicating high severity, and no EPSS score is provided, meaning its exploitation probability has not been quantified. It is not listed in CISA's KEV catalog. Based on the description, the likely attack vector is local, requiring the attacker to run the application and manipulate the file selection dialog. Once triggered, the elevated privileges granted by the application allow the attacker to perform arbitrary privileged actions without additional authentication."}}}}, "created": "2026-04-28T09:17:27.241181+00:00", "title": "Local Privilege Escalation via Improper Path Handling in Fan Control Open File Dialog", "updated": "2026-04-28T13:15:31.888884+00:00", "vendors": ["rem0o", "rem0o$PRODUCT$fan_control"]}