Impact
AOMEI Partition Assistant contains a flaw in its ampa10.sys kernel driver that allows a local user to bypass normal access controls and elevate to kernel or system level privileges. The vulnerability is rooted in improper handling of privileged operations within the driver, classified as CWE‑266 and CWE‑284. As a result, a user who can execute locally on the affected machine can gain elevated rights without needing further authentication.
Affected Systems
Installations of AOMEI Partition Assistant up to and including version 10.10.1 on Windows systems are vulnerable. The flaw exists in the ampa10.sys component of the kernel driver that the software loads. No other products or later versions have been reported to be affected at this time.
Risk and Exploitability
With a CVSS score of 8.5, this flaw is high severity. The attack is local and does not require network access, and the EPSS score is not available. The vulnerability has been publicly disclosed with evidence of an available exploit, yet it is not listed in the CISA KEV catalog. Consequently, machines that allow local user activity remain at significant risk of privilege escalation until a vendor fix or mitigation is implemented.
OpenCVE Enrichment