CVE-2025-0288

Summary

Various Paragon Software products contain an arbitrary kernel memory vulnerability within biontdrv.sys, facilitated by the memmove function, which does not validate or sanitize user controlled input, allowing an attacker the ability to write arbitrary kernel memory and perform privilege escalation.

Affected Software

VendorProductVersion RangeStatus
Paragon SoftwareMigrate OS to SSD4 <= 5affected
Paragon SoftwareDisk Wiper15 <= 16affected
Paragon SoftwareDrive Copy15 <= 16affected
Paragon SoftwareBackup and Recovery15 <= 17.39affected
Paragon SoftwareHard Disk Manager15 <= 17.39affected
Paragon SoftwarePartition Manager15 <= 17.39affected

Weaknesses

  • CWE-131 Incorrect Calculation of Buffer Size

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References