CRITICAL🇵🇱 Wersja polska

CVE-2025-67793

CVSS 9.8v3.1pub. 2025-12-17upd. 2026-01-02

An issue was discovered in DriveLock 24.1 through 24.1.*, 24.2 through 24.2.*, and 25.1 before 25.1.6. Users with the "Manage roles and permissions" privilege can promote themselves or other DOC users to the Supervisor role through an API call. This privilege is included by default in the Administrator role. This issue mainly affects cloud multi-tenant deployments; on-prem single-tenant installations are typically not impacted because local admins usually already have Supervisor privileges.

🤖 AI Analysis
How it works

A user with 'Manage roles and permissions' privilege (assigned by default to the Administrator role) can execute a specially crafted API call that results in elevating their own account or another DOC user account to the Supervisor role. The Supervisor role has a higher permission level than Administrator, meaning the attacker gains full control over the system. The issue stems from insufficient server-side validation — the API does not verify whether the user making the request is authorized to grant the Supervisor role.

Impact

An attacker can obtain the highest level of permissions in the DriveLock system (Supervisor role), enabling complete takeover of configuration, security policies, and data managed by the platform, including in multi-tenant cloud environments.

Mitigation & patch

DriveLock should be updated to version 25.1.6 or later. Detailed information is available in the vendor's security bulletin at: https://drivelock.help/sb/Content/SecurityBulletins/25-008-DESPrivilegeEsc.htm. In multi-tenant cloud environments, the update should be prioritized and user role assignments should be verified for unauthorized changes.

Who is affected

DriveLock versions 24.1.x, 24.2.x, and 25.1 prior to 25.1.6. The issue primarily affects cloud deployments in multi-tenant mode; on-premise installations in single-tenant mode are typically not vulnerable, as local administrators usually already have Supervisor permissions.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Drivelock

    APP
    Drivelock
    24.1 – 24.1.624.2 – 24.2.825.1 – 25.1.6 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-67781CRITICAL9.9PL ✓ten sam produkt

DriveLock — eskalacja uprawnień przez manipulację procesami uprzywilejowanymi

CVE-2025-67787CRITICAL9.6PL ✓ten sam produkt

XSS w DriveLock Operations Center umożliwiający przejęcie sesji

CVE-2025-67791CRITICAL9.8PL ✓ten sam produkt

DriveLock — obejście uwierzytelniania agenta (Auth Bypass) w DES

CVE-2025-55187CRITICAL9.9PL ✓ten sam produkt

DriveLock — privilege escalation umożliwiające przejęcie kontroli nad systemem

CVE-2025-67790HIGH7.5ten sam produkt

An issue was discovered in DriveLock 24.1 before 24.1.6, 24.2 before 24.2.7, and 25.1 before 25.1.5. An unpriv...

CVE-2025-67793 — Drivelock — CRITICAL — CVSS 9.8 | CVEbaza.pl