CVE-2025-67781

EUVD-2025-203940
An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Local unprivileged users can manipulate privileged processes to gain more privileges on Windows computers.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.9 CRITICAL
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
drivelockdrivelock
24.1 ≤
𝑥
< 24.1.6
drivelockdrivelock
24.2 ≤
𝑥
< 24.2.7
drivelockdrivelock
25.1 ≤
𝑥
< 25.1.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://drivelock.help/en-us/Content/Home.htm