CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-0286

Various Paragon Software products contain an arbitrary kernel memory write vulnerability within biontdrv.sys that is caused by a failure to properly validate the length of user supplied data, which can allow an attacker to execute arbitrary code on the victim machine.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.2%

CVSS Severity

CVSS v3 Score 8.4

References

Products affected by CVE-2025-0286

Paragon-Software » Paragon Backup & Recovery » Version: Any

cpe:2.3:a:paragon-software:paragon_backup_&_recovery:*
Paragon-Software » Paragon Disk Wiper » Version: Any

cpe:2.3:a:paragon-software:paragon_disk_wiper:*
Paragon-Software » Paragon Drive Copy » Version: Any

cpe:2.3:a:paragon-software:paragon_drive_copy:*
Paragon-Software » Paragon Hard Disk Manager » Version: Any

cpe:2.3:a:paragon-software:paragon_hard_disk_manager:*
Paragon-Software » Paragon Migrate Os To Ssd » Version: Any

cpe:2.3:a:paragon-software:paragon_migrate_os_to_ssd:*
Paragon-Software » Paragon Partition Manager » Version: Any

cpe:2.3:a:paragon-software:paragon_partition_manager:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-0286

Products

Pricing

Contact Us