CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-0288

Various Paragon Software products contain an arbitrary kernel memory vulnerability within biontdrv.sys, facilitated by the memmove function, which does not validate or sanitize user controlled input, allowing an attacker the ability to write arbitrary kernel memory and perform privilege escalation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.5%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2025-0288

Paragon-Software » Paragon Backup & Recovery » Version: Any

cpe:2.3:a:paragon-software:paragon_backup_&_recovery:*
Paragon-Software » Paragon Disk Wiper » Version: Any

cpe:2.3:a:paragon-software:paragon_disk_wiper:*
Paragon-Software » Paragon Drive Copy » Version: Any

cpe:2.3:a:paragon-software:paragon_drive_copy:*
Paragon-Software » Paragon Hard Disk Manager » Version: Any

cpe:2.3:a:paragon-software:paragon_hard_disk_manager:*
Paragon-Software » Paragon Migrate Os To Ssd » Version: Any

cpe:2.3:a:paragon-software:paragon_migrate_os_to_ssd:*
Paragon-Software » Paragon Partition Manager » Version: Any

cpe:2.3:a:paragon-software:paragon_partition_manager:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-0288

Products

Pricing

Contact Us