Description

An issue was discovered in DriveLock 24.1 through 24.1.*, 24.2 through 24.2.*, and 25.1 through 25.1.*. An incomplete configuration (agent authentication) in DriveLock tenant allows attackers to impersonate any DriveLock agent on the network against the DES (DriveLock Enterprise Service).

INFO

Published Date :

2025-12-17T00:00:00.000Z

Last Modified :

2025-12-18T19:52:55.631Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-67791 vulnerability.

Vendors Products
Drivelock
  • Drivelock
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-67791.

URL Resource
https://drivelock.help/versions/current/web/en/releasenotes/Content/ReleaseNotes_DriveLock/SecurityBulletins/25-006-DESMisconfig.htm cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System