CVE-2025-0222 | IObit Protected Folder up to 13.6.0.5 IOCTL IUProcessFilter.sys 0x8001E000/0x8001E004 null pointer dereference

A vulnerability was found in IObit Protected Folder up to 13.6.0.5 and classified as problematic. This issue affects the function 0x8001E000/0x8001E004 in the library IUProcessFilter.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference.

The identification of this vulnerability is CVE-2025-0222. An attack has to be approached locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-0222 | IObit Protected Folder up to 13.6.0.5 IOCTL IUProcessFilter.sys 0x8001E000/0x8001E004 null pointer dereference

Post correlati

CVE-2025-22132 | nilsonLazarin WeGIA up to 3.2.6 File Upload controla_xlsx.php cross site scripting (GHSA-h8hr-jhcx-fcv9)

CVE-2024-39546 | Juniper Networks Junos OS Evolved prior 23.2R2-EVO Socket Intercept Command File Interface authorization (JSA83008)

CVE-2024-11082 | Tumult Hype Animations Plugin up to 1.9.15 on WordPress hypeanimations_panel unrestricted upload

CVE-2024-7161 | SeaCMS 13.0 Password Change member.php newpwd/newpwd2 cross-site request forgery (Issue 30)