Primary

Context

Dräger ICMHelper Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in the Dräger ICMHelper service, affecting versions through 1.4.0.1. This vulnerability allows a low privileged local attacker to execute operating system commands with elevated privileges. The exploitation of this vulnerability could lead to unauthorized access to the application, sensitive information, and client system and server resources. Successful exploitation of this vulnerability requires prior exploitation of CVE-2025-2810.

Impact

Exploitation of this vulnerability could allow a low privileged local attacker to execute operating system commands with elevated privileges, potentially leading to unauthorized access to application data, sensitive information, and resources on the client system and server.

Remediation

The vulnerability has been fixed in ICMHelper version 2.0.1.0.

Added: Aug 5, 2025, 8:32 AM

Updated: Aug 5, 2025, 8:32 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dräger ICMHelper Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating