bluestacks CVE Vulnerabilities & Metrics

Focus on bluestacks vulnerabilities and metrics.

Last updated: 21 Aug 2025, 22:25 UTC

About bluestacks Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with bluestacks. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total bluestacks CVEs: 6
Earliest CVE date: 06 Jan 2017, 21:59 UTC
Latest CVE date: 05 Aug 2025, 15:15 UTC

Latest CVE reference: CVE-2025-44964

Rolling Stats

30-day Count (Rolling): 1
365-day Count (Rolling): 1

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical bluestacks CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 4.75

Max CVSS: 7.2

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	1
4.0-6.9	4
7.0-8.9	1
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS bluestacks CVEs

These are the five CVEs with the highest CVSS scores for bluestacks, sorted by severity first and recency.

CVE-2016-4288 bluestacks Published on 06 Jan 2017, 21:59 UTC (CVSS: 7.2)
A local privilege escalation vulnerability exists in BlueStacks App Player. The BlueStacks App Player installer creates a registry key with weak permissions that allows users to execute arbitrary programs with SYSTEM privileges.
CVE-2019-12936 bluestacks Published on 23 Jun 2019, 23:15 UTC (CVSS: 6.0)
BlueStacks App Player 2, 3, and 4 before 4.90 allows DNS Rebinding for attacks on exposed IPC functions.
CVE-2018-0701 bluestacks Published on 15 Nov 2018, 15:29 UTC (CVSS: 5.8)
BlueStacks App Player (BlueStacks App Player for Windows 3.0.0 to 4.31.55, BlueStacks App Player for macOS 2.0.0 and later) allows an attacker on the same network segment to bypass access restriction to gain unauthorized access.
CVE-2019-14220 bluestacks Published on 24 Sep 2019, 21:15 UTC (CVSS: 4.9)
An issue was discovered in BlueStacks 4.110 and below on macOS and on 4.120 and below on Windows. BlueStacks employs Android running in a virtual machine (VM) to enable Android apps to run on Windows or MacOS. Bug is in a local arbitrary file read through a system service call. The impacted method runs with System admin privilege and if given the file name as parameter returns you the content o...
CVE-2020-24367 bluestacks Published on 10 Nov 2020, 21:15 UTC (CVSS: 4.6)
Incorrect file permissions in BlueStacks 4 through 4.230 on Windows allow a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user.

All CVEs for bluestacks

CVE-2025-44964 bluestacks vulnerability CVSS: 0 05 Aug 2025, 15:15 UTC

A lack of SSL certificate validation in BlueStacks v5.20 allows attackers to execute a man-it-the-middle attack and obtain sensitive information.

CVE-2020-24367 bluestacks vulnerability CVSS: 4.6 10 Nov 2020, 21:15 UTC

Incorrect file permissions in BlueStacks 4 through 4.230 on Windows allow a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user.

CVE-2019-14220 bluestacks vulnerability CVSS: 4.9 24 Sep 2019, 21:15 UTC

An issue was discovered in BlueStacks 4.110 and below on macOS and on 4.120 and below on Windows. BlueStacks employs Android running in a virtual machine (VM) to enable Android apps to run on Windows or MacOS. Bug is in a local arbitrary file read through a system service call. The impacted method runs with System admin privilege and if given the file name as parameter returns you the content of file. A malicious app using the affected method can then read the content of any system file which it is not authorized to read

CVE-2019-12936 bluestacks vulnerability CVSS: 6.0 23 Jun 2019, 23:15 UTC

BlueStacks App Player 2, 3, and 4 before 4.90 allows DNS Rebinding for attacks on exposed IPC functions.

CVE-2018-0701 bluestacks vulnerability CVSS: 5.8 15 Nov 2018, 15:29 UTC

BlueStacks App Player (BlueStacks App Player for Windows 3.0.0 to 4.31.55, BlueStacks App Player for macOS 2.0.0 and later) allows an attacker on the same network segment to bypass access restriction to gain unauthorized access.

CVE-2016-4288 bluestacks vulnerability CVSS: 7.2 06 Jan 2017, 21:59 UTC

A local privilege escalation vulnerability exists in BlueStacks App Player. The BlueStacks App Player installer creates a registry key with weak permissions that allows users to execute arbitrary programs with SYSTEM privileges.