CVE-2025-0285

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Paragon Partition Manager version 7.9.1

Description The issue is caused by a failure to properly validate the length of user-supplied data, leading to an arbitrary kernel memory mapping vulnerability within the biontdrv.sys component. This can allow an attacker to perform privilege escalation exploits.

Recommendations For Paragon Partition Manager version 7.9.1, consider disabling the biontdrv.sys component until a patch is available to prevent potential privilege escalation exploits.

Fix

DoS

LPE

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-1284CWE-119

Related Identifiers

BDU:2025-02230

CVE-2025-0285

Affected Products

Paragon Partition Manager

CVE-2025-0285

Weakness Enumeration

Related Identifiers

Affected Products

References · 16