CVE-2025-0223 | IObit Protected Folder up to 13.6.0.5 IOCTL IURegistryFilter.sys 0x8001E000/0x8001E00C/0x8001E004/0x8001E010 null pointer dereference

A vulnerability was found in IObit Protected Folder up to 13.6.0.5. It has been classified as problematic. Affected is the function 0x8001E000/0x8001E00C/0x8001E004/0x8001E010 in the library IURegistryFilter.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference.

This vulnerability is traded as CVE-2025-0223. Local access is required to approach this attack. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-0223 | IObit Protected Folder up to 13.6.0.5 IOCTL IURegistryFilter.sys 0x8001E000/0x8001E00C/0x8001E004/0x8001E010 null pointer dereference

Related Posts

CVE-2024-11906 | TPG Get Posts Plugin up to 3.6.5 on WordPress cross site scripting

CVE-2024-9275 | jeanmarc77 123solar up to 1.8.4.5 /admin/admin_invt2.php PROTOCOLx file inclusion (Issue 75)

CVE-2024-10885 | SearchIQ Plugin up to 4.6 on WordPress cross site scripting

CVE-2024-7654 | Progress OpenEdge up to 11.7.18/12.2.14/12.8.1 ActiveMQ Discovery Service cross site scripting