Vulnerability in N/a

CVE-2025-69784

A local, non-privileged attacker can abuse a vulnerable IOCTL interface exposed by the OpenEDR 2.5.1.0 kernel driver to modify the DLL injection path used by the product. By redirecting this path to a user-writable location, an attacker ca…

EPSS: 0.000 (7.1th percentile) — read the EPSS interpretation.

Affected products

  • N/a — versions n/a

References