CVE-2025-1865

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue concerns a kernel driver that is accessible to low-privileged users. This driver exposes a function that fails to properly validate the privileges of the calling process, allowing for the creation of files at arbitrary locations with full user control. This ultimately enables privilege escalation to SYSTEM.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.