CVE-2025-64457
EUVD-2025-4404510.11.2025, 14:15
In JetBrains ReSharper, Rider and dotTrace before 2025.2.5 local privilege escalation was possible via race condition
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| jetbrains | dottrace | 𝑥 < 2025.2.5 |
| jetbrains | resharper | 𝑥 < 2025.2.5 |
| jetbrains | rider | 𝑥 < 2025.2.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-367 - Time-of-check Time-of-use (TOCTOU) Race ConditionThe software checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the software to perform invalid actions when the resource is in an unexpected state.
- CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.