CVE-2025-56803 | Figma Desktop 125.6.5 on Windows manifest.json child_process.exec build command injection

A vulnerability was found in Figma Desktop 125.6.5 on Windows. It has been rated as critical. This impacts the function child_process.exec of the file manifest.json. This manipulation of the argument build causes command injection.

This vulnerability is handled as CVE-2025-56803. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More