CVE-2025-32780

Publication date

2025-04-15 16:32:55

Family

GitHub_M

State

PUBLISHED

Description

BleachBit cleans files to free disk space and to maintain privacy. BleachBit for Windows up to version 4.6.2 is vulnerable to a DLL Hijacking vulnerability. By placing a malicious DLL with the name uuid.dll in the folder C:UsersAppDataLocalMicrosoftWindowsApps, an attacker can execute arbitrary code every time BleachBit is run. This issue has been patched in version 4.9.0.