CVE-2025-60349 PoC — Prevx 安全漏洞

Source

https://github.com/djackreuter/CVE-2025-60349

Associated Vulnerability

Title:Prevx 安全漏洞 (CVE-2025-60349)
Description:Prevx是英国Prevx公司的一个云端反病毒软件。 Prevx v3.0.5.220版本存在安全漏洞，该漏洞源于pxscan.sys驱动程序未正确处理IOCTL代码0x22E044，可能导致拒绝服务攻击。

Description

CVE-2025-60349: Pxscan Arbitrary Process Termination

Readme

# CVE-2025-60349: Pxscan Arbitrary Process Termination

 An issue was discovered in Prevx v3.0.5.220 allowing attackers to cause a denial of service via sending IOCTL code `0x22E044` to the `pxscan.sys` driver. Any processes listed under registry key `HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\pxscan\Files` will be terminated.

 Discovered by Dylan Reuter, August 2025.

**References:**
* https://nvd.nist.gov/vuln/detail/CVE-2025-60349
* https://www.cve.org/CVERecord?id=CVE-2025-60349

File Snapshot


 [4.0K]  /data/pocs/eb8d2cb4aeef3c09e2ed6e667f1ce6671d764921
├── [4.0K]  CVE-2025-60349-PoC
│   ├── [4.0K]  CVE-2025-60349-PoC
│   │   ├── [3.5K]  CVE-2025-60349-PoC.cpp
│   │   ├── [6.1K]  CVE-2025-60349-PoC.vcxproj
│   │   └── [ 970]  CVE-2025-60349-PoC.vcxproj.filters
│   └── [1.4K]  CVE-2025-60349-PoC.sln
├── [1.0K]  LICENSE
└── [ 499]  README.md

3 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!