VYPR
Vendor

Voidtools

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2025-12683MedNov 4, 2025
    risk 0.38cvss epss 0.00

    The service employed by Everything, running as SYSTEM, communicates with the lower privileged Everything GUI via a named pipe. The named pipe has a NULL DACL and thus provides all users full permission over it; leading to potential Service Denial Of Service or Privilege…

  • CVE-2023-27704Apr 12, 2023
    risk 0.00cvss epss 0.00

    Void Tools Everything lower than v1.4.1.1022 was discovered to contain a Regular Expression Denial of Service (ReDoS).

  • CVE-2021-20784Jul 14, 2021
    risk 0.00cvss epss 0.01

    HTTP header injection vulnerability in Everything version 1.0, 1.1, and 1.2 except the Lite version may allow a remote attacker to inject an arbitrary script or alter the website that uses the product.

  • CVE-2020-24567Aug 21, 2020
    risk 0.00cvss epss 0.01

    voidtools Everything before 1.4.1 Beta Nightly 2020-08-18 allows privilege escalation via a Trojan horse urlmon.dll file in the installation directory. NOTE: this is only relevant if low-privileged users can write to the installation directory, which may be considered a…