Description
A vulnerability was identified in EaseUS Partition Master up to 14.5. The affected element is an unknown function in the library epmntdrv.sys of the component Kernel Driver. The manipulation leads to improper access controls. The attack needs to be performed locally. The exploit is publicly available and might be used. You should upgrade the affected component. The vendor explains: "We have confirmed that this issue was present only in older versions of the product. Our product has since been updated, and the issue has been resolved in the latest version, so it no longer exists."
Published: 2026-06-21
Score: 8.5 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in an unmanaged function in epmntdrv.sys that causes improper access controls. When executed locally, it permits bypassing of security checks, allowing a lower‑privileged user to elevate to higher privileges. The weakness, mapped to CWE‑266 and CWE‑284, can be exploited to overwrite kernel‑level data or execute arbitrary instructions, leading to full control over the affected system.

Affected Systems

EaseUS Partition Master versions up to 14.5 contain the vulnerable kernel driver epmntdrv.sys. Those editions are susceptible when run on Windows systems that allow local users to load the driver. Newer releases of the product have remedied the flaw.

Risk and Exploitability

With a CVSS score of 8.5 the flaw is classified as high severity. The EPSS score is not available, but reports indicate the exploit code is publicly posted and can be leveraged by local adversaries. Because the attack is local, the attacker must have access to the machine, yet once achieved, escalating privileges can lead to full system compromise. The issue is not listed in the CISA KEV catalog, but its impact warrants immediate action.

Generated by OpenCVE AI on June 21, 2026 at 09:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update EaseUS Partition Master to the latest version where the kernel driver has been repaired.
  • Ensure that the host operating system has the latest security patches and that any non‑essential local administrative accounts are disabled or highly controlled.
  • If upgrading is not immediately possible, restrict the installation and execution of the epmntdrv.sys driver to trusted accounts only, and monitor for unauthorized driver loading events.

Generated by OpenCVE AI on June 21, 2026 at 09:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 21 Jun 2026 07:45:00 +0000

Type Values Removed Values Added
Description A vulnerability was identified in EaseUS Partition Master up to 14.5. The affected element is an unknown function in the library epmntdrv.sys of the component Kernel Driver. The manipulation leads to improper access controls. The attack needs to be performed locally. The exploit is publicly available and might be used. You should upgrade the affected component. The vendor explains: "We have confirmed that this issue was present only in older versions of the product. Our product has since been updated, and the issue has been resolved in the latest version, so it no longer exists."
Title EaseUS Partition Master Kernel Driver epmntdrv.sys access control
First Time appeared Easeus
Easeus partition Master
Weaknesses CWE-266
CWE-284
CPEs cpe:2.3:a:easeus:partition_master:*:*:*:*:*:*:*:*
Vendors & Products Easeus
Easeus partition Master
References
Metrics cvssV2_0

{'score': 6.8, 'vector': 'AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C'}

cvssV3_0

{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C'}

cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Easeus Partition Master
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-21T05:45:07.032Z

Reserved: 2026-06-20T09:39:48.265Z

Link: CVE-2026-12781

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-21T09:30:09Z

Weaknesses
  • CWE-266

    Incorrect Privilege Assignment

  • CWE-284

    Improper Access Control