← back
CVE-2025-67781

CVE-2025-67781

CVSS 9.9 CRITICALEPSS 0.2%CWE-269
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.9EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
17 Dec 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. Local unprivileged users can manipulate privileged processes to gain more privileges on Windows computers.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected products
n/a · n/a