Privilege Escalation Vulnerability in Everything by Voidtools
CVE-2025-12683

5.8MEDIUM

Key Information:

Vendor: Voidtools
Status: Everything
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-12683?

A vulnerability in Everything, a search tool by Voidtools, stems from the service running with SYSTEM privileges and communicating with its GUI via a named pipe that has a NULL Discretionary Access Control List (DACL). This misconfiguration grants all users unrestricted access to the named pipe, potentially allowing a low-privileged user to exploit this weakness for service denial or privilege escalation when combined with other vulnerabilities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Everything =<1.4.1.1029

References

https://www.voidtools.com/

CVSS V4

Score:

5.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Nov 4, 2025

Credit

Abdul Mhanni

JSON

Voidtools

What is CVE-2025-12683?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V4

Timeline

Credit

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.