CVE-2025-23385

High

Published: 28 January 2025

Published

28 January 2025

Modified

12 January 2026

KEV Added

—

Patch

—

CVSS Score 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

EPSS Score 0.0000 0.1th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Description

In JetBrains ReSharper before 2024.3.4, 2024.2.8, and 2024.1.7, Rider before 2024.3.4, 2024.2.8, and 2024.1.7, dotTrace before 2024.3.4, 2024.2.8, and 2024.1.7, ETW Host Service before 16.43, Local Privilege Escalation via the ETW Host Service was possible

Security Summary

CVE-2025-23385 is a local privilege escalation vulnerability via the ETW Host Service, affecting JetBrains ReSharper versions prior to 2024.3.4, 2024.2.8, and 2024.1.7; Rider prior to 2024.3.4, 2024.2.8, and 2024.1.7; dotTrace prior to 2024.3.4, 2024.2.8, and 2024.1.7; and ETW Host Service prior to version 16.43. The issue is associated with CWE-114 and has a CVSS v3.1 base score of 7.8 (AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H).

A local attacker with low privileges can exploit this vulnerability, requiring high attack complexity but no user interaction. Successful exploitation allows the attacker to escalate privileges, resulting in high impacts to confidentiality, integrity, and availability within a changed scope.

JetBrains has published details on fixes in the listed versions. Additional information is available in their advisory at https://www.jetbrains.com/privacy-security/issues-fixed/.

Details

CWE(s): CWE-114NVD-CWE-noinfo

Affected Products

jetbrains

dottrace

≤ 2024.1.7 · 2024.2 — 2024.2.8 · 2024.3 — 2024.3.4

jetbrains

etw host service

≤ 16.43

jetbrains

resharper

≤ 2024.1.7 · 2024.2 — 2024.2.8 · 2024.3 — 2024.3.4

jetbrains

rider

≤ 2024.1.7 · 2024.2.0 — 2024.2.8 · 2024.3.0 — 2024.3.4

References

https://www.jetbrains.com/privacy-security/issues-fixed/
Vendor Advisory · cve@jetbrains.com