CVE-2025-55187
CRITICALDriveLock <24.1.5, <24.2.6, <25.1.4 - Privilege Escalation
Title source: llmDescription
In DriveLock 24.1.4 before 24.1.5, 24.2.5 before 24.2.6, and 25.1.2 before 25.1.4, attackers can gain elevated privileges.
References (3)
Core 3
Core References
Release Notes
https://drivelock.help/versions/2025_1/web/en/releasenotes/Content/ReleaseNotes_DriveLock/NewRelease/Aenderungen_Patch2.htm
Scores
CVSS v3
9.9
EPSS
0.0040
EPSS Percentile
32.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-269
Status
published
Products (3)
drivelock/drivelock
24.1.4
drivelock/drivelock
24.2.5
drivelock/drivelock
25.1.2
Published
Sep 26, 2025
Tracked Since
Feb 18, 2026