Security Advisory

CVE-2025-0288

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-03 16:24:54

Last updated 2025-09-09 14:00:21

Assigner certcc

State PUBLISHED

Description

Various Paragon Software products contain an arbitrary kernel memory vulnerability within biontdrv.sys, facilitated by the memmove function, which does not validate or sanitize user controlled input, allowing an attacker the ability to write arbitrary kernel memory and perform privilege escalation.

← Browse all CVEs View on cve.org ↗