Security Advisory

CVE-2025-0287

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-03 16:25:08

Last updated 2025-09-05 12:08:03

Assigner certcc

State PUBLISHED

Description

Various Paragon Software products contain a null pointer dereference vulnerability within biontdrv.sys that is caused by a lack of a valid MasterLrp structure in the input buffer, allowing an attacker to execute arbitrary code in the kernel, facilitating privilege escalation.

← Browse all CVEs View on cve.org ↗