DLL Hijacking Vulnerability in EfficientLab Controlio Software
CVE-2025-10549

Currently unrated

Key Information:

Vendor

Efficientlab, Llc

Status
Controlio
Vendor
CVE Published:
23 April 2026

What is CVE-2025-10549?

The EfficientLab Controlio software prior to version 1.3.95 is susceptible to a DLL hijacking vulnerability due to weak permissions in the installation directory. This flaw allows a local attacker to exploit the software by placing a maliciously crafted DLL file within the directory. As the affected service operates with elevated permissions as NT AUTHORITY\SYSTEM, a successful attack could lead to arbitrary code execution with the highest level of privileges, posing significant security risks.

Affected Version(s)

Controlio <1.3.95

References

https://r.sec-consult.com/controlio
third-party-advisory
https://kb.controlio.net/hc/en-us/articles/45777908471185...
release-notes

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Tobias Niemann, SEC Consult Vulnerability Lab
Daniel Hirschberger, SEC Consult Vulnerability Lab
Thorger Jansen, SEC Consult Vulnerability Lab
Marius Renner, SEC Consult Vulnerability Lab
.