Security Advisory

CVE-2025-1865

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-04 09:52:56

Last updated 2025-07-07 20:49:02

Assigner cirosec

State PUBLISHED

Description

The kernel driver, accessible to low-privileged users, exposes a function that fails to properly validate the privileges of the calling process. This allows creating files at arbitrary locations with full user control, ultimately allowing for privilege escalation to SYSTEM.

← Browse all CVEs View on cve.org ↗