High severity7.8NVD Advisory· Published Apr 28, 2025· Updated Apr 15, 2026

CVE-2025-42598

Description

Multiple SEIKO EPSON printer drivers for Windows OS are configured with an improper access permission settings when installed or used in a language other than English. If a user is directed to place a crafted DLL file in a location of an attacker's choosing, the attacker may execute arbitrary code with SYSTEM privilege on a Windows system on which the printer driver is installed.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/vu/JVNVU90649144/nvd
www.epson.co.uk/en_GB/faq/KA-01993/contentsnvd
www.epson.jp/support/misc_t/250428_oshirase.htmnvd
www2.epson.jp/support/misc_t/windrv_productlist.pdfnvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000