CVE-2025-67230

Published: Jan 23, 2026

Modified: Jan 23, 2026

PUBLISHED

Description

Improper permissions in the handler for the Custom URL Scheme in ToDesktop Builder v0.33.0 allows attackers with renderer-context access to invoke external protocol handlers without sufficient validation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.todesktop.com/changelog

https://www.todesktop.com/security/advisories/TDSA-2025-002

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-67230

Description

Affected Products

References