CVE-2025-52915

HIGH

K7RKScan.sys 23.0.0.10 - Privilege Escalation

Title source: llm

Description

K7RKScan.sys 23.0.0.10, part of the K7 Security Anti-Malware suite, allows an admin-privileged user to send crafted IOCTL requests to terminate processes that are protected through a third-party implementation. This is caused by insufficient caller validation in the driver's IOCTL handler, enabling unauthorized processes to perform those actions in kernel space. Successful exploitation can lead to denial of service by disrupting critical third-party services or applications.

Exploits (2)

nomisec WORKING POC 575 stars
by BlackSnufkin · poc
https://github.com/BlackSnufkin/BYOVD
github WORKING POC 10 stars
by diego-tella · cpoc
https://github.com/diego-tella/CVE-2025-1055-poc

References (2)

Scores

CVSS v3 7.2
EPSS 0.0010
EPSS Percentile 26.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-269
Status published
Published Sep 09, 2025
Tracked Since Feb 18, 2026