Home

Description

An issue was discovered in DriveLock 24.1 through 24.1.*, 24.2 before 24.2.8, and 25.1 before 25.1.6. Directories and files created by the agent are created with overly permissive ACLs, allowing local users without administrator rights to trigger actions or destabilize the agent.

PUBLISHED Reserved 2025-12-12 | Published 2025-12-17 | Updated 2025-12-18 | Assigner mitre

References

drivelock.help/...urityBulletins/25-009-AgIncPermissions.htm

cve.org (CVE-2025-67794)

nvd.nist.gov (CVE-2025-67794)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.