Primary

Context

DriveLock Agent Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in DriveLock Agent versions 24.1.4 prior to 24.1.5, 24.2.5 prior to 24.2.6, and 25.1.2 prior to 25.1.4. This vulnerability allows remote attackers on the same network to gain elevated privileges on affected Windows systems due to incorrect access control.

Impact

Exploitation of this vulnerability allows for remote privilege escalation on affected Windows systems.

Remediation

Users are advised to update to DriveLock versions 24.1.5, 24.2.6, or 25.1.4. For those using older versions, which are also affected but no longer receive patches, consult the DriveLock End-of-Life information for guidance on supported versions.

Added: Sep 26, 2025, 3:58 PM

Updated: Sep 26, 2025, 6:27 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.5

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.5

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

DriveLock Agent Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating