CNNVD-202512-3187 Information

CNNVD ID

CNNVD-202512-3187

Related CVE

CVE-2025-67792

• CNNVD Published: 2025-12-17

Description (Chinese)

DriveLock是德国DriveLock公司的一个端点安全与数据保护平台。 DriveLock 24.1.6之前版本、24.2.7之前版本和25.1.5之前版本存在安全漏洞，该漏洞源于本地无特权用户可操纵DriveLock进程，可能导致在Windows计算机上执行任意命令。

Description (English)

DriveLock is an end-point security and data protection platform of the German firm DriveLock. There is a security loophole in previous versions of DriveLock 24.1.6, 24.2.7 and 25.1.5, which stems from local privileged users who can manipulate the DriveLock process and may result in arbitrary orders being executed on Windows computers.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

DriveLock

Published

2025-12-17

Last Modified

2026-02-24

References

https://drivelock.help/versions/current/web/en/releasenotes/Content/ReleaseNotes_DriveLock/SecurityBulletins/25-007-LocalPrivilegeEsc.htm

Patch

https://drivelock.help/versions/2025_2/web/en/releasenotes/Content/ReleaseNotes_DriveLock/NewRelease/DL_RelNotes.htm