Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Sandboxie — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in Sandboxie, with AI-generated Chinese analysis, references, and POCs.

Vendor: sandboxie-plus

CVE IDTitleCVSSSeverityPublished
CVE-2026-34596 Sandboxie-Plus local privilege escalation via TOCTOU race condition in UpdUtil addon installation CWE-367 6.7 -2026-05-05
CVE-2026-34527 Sandboxie-Plus EditPassword hash entropy reduced from 160 bits to 80 bits due to incorrect nibble extraction CWE-328 8.1 -2026-05-05
CVE-2026-34464 Sandboxie-Plus NamedPipeServer OpenHandler stack overflow via unterminated server field CWE-121 7.7 -2026-05-05
CVE-2026-34462 Sandboxie-Plus ProcessServer boxname stack buffer overflows via unterminated wide string copy CWE-121 9.1 -2026-05-05
CVE-2026-34461 Sandboxie-Plus SbieIniServer RunSbieCtrl stack buffer overflow allows local privilege escalation CWE-121 9.9 -2026-05-05
CVE-2026-34459 Sandboxie-Plus sandbox escape via uninitialized memory leak and stack overflow in GetRawInputDeviceInfoSlave CWE-121 8.6 -2026-05-05
CVE-2026-34458 Sandboxie-Plus privilege escalation via INI CRLF injection bypassing EditAdminOnly CWE-93 7.8 -2026-05-05
CVE-2026-32603 Sandboxie kernel driver denial of service via malformed IOCTL from sandboxed process CWE-20 5.5 -2026-05-05
CVE-2019-25551 Sandboxie 5.30 Denial of Service via Program Alerts Buffer Overflow CWE-1282 6.2 Medium2026-03-21
CVE-2021-47831 Sandboxie 5.49.7 - Denial of Service CWE-1284 7.5 High2026-01-16
CVE-2025-64721 Sandboxie's Integer Overflow in SbieIniServer::RC4Crypt allows sandbox escape and SYSTEM compromise CWE-190 7.8AIHighAI2025-12-11
CVE-2025-54422 Sandboxie exposes encrypted sandbox key during password change CWE-312 6.5AIMediumAI2025-07-29
CVE-2025-46716 Sandboxie Arbitrary Kernel Read in SbieDrv.sys API (API_SET_SECURE_PARAM) CWE-125 5.5 Medium2025-05-22
CVE-2025-46715 Sandboxie Arbitrary Kernel Write in SbieDrv.sys API (API_GET_SECURE_PARAM) CWE-787 7.8 High2025-05-22
CVE-2025-46714 Sandboxie has Pool Buffer Overflow in SbieDrv.sys API (API_GET_SECURE_PARAM) CWE-120 7.8 High2025-05-22
CVE-2025-46713 Sandboxie has Pool Buffer Overflow in SbieDrv.sys API (API_SET_SECURE_PARAM) CWE-120 7.8 High2025-05-22
CVE-2024-49360 Path traversal in Sandboxie CWE-22 9.2 Critical2024-11-29

All 17 known CVE vulnerabilities affecting Sandboxie with full Chinese analysis, references, and POCs where available.