CVE-2025-61155
MEDIUM EXPLOITED RANSOMWAREGameDriverX64.sys <7.23.4.7 - Privilege Escalation
Title source: llmDescription
The GameDriverX64.sys kernel-mode anti-cheat driver (v7.23.4.7 and earlier) contains an access control vulnerability in one of its IOCTL handlers. A user-mode process can open a handle to the driver device and send specially crafted IOCTL requests. These requests are executed in kernel-mode context without proper authentication or access validation, allowing the attacker to terminate arbitrary processes, including critical system and security services, without requiring administrative privileges.
Exploits (1)
nomisec
WORKING POC
22 stars
by pollotherunner · poc
https://github.com/pollotherunner/CVE-2025-61155
Scores
CVSS v3
5.5
EPSS
0.0001
EPSS Percentile
1.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
VulnCheck KEV
2026-01-29
Ransomware Use
Confirmed
CWE
CWE-400
Status
published
Published
Oct 28, 2025
Tracked Since
Feb 18, 2026