Denial of Service Vulnerability in Hotta Studio's GameDriverX64.sys Kernel Anti-Cheat Driver
CVE-2025-61155

5.5MEDIUM

Key Information:

Vendor: Hotta Studio
Status: GameDriverX64.sys
Vendor: CVE Published:; 28 October 2025

🔔 Create Hotta Studio Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-61155?

The GameDriverX64.sys kernel-mode anti-cheat driver from Hotta Studio has a vulnerability that enables local attackers to execute denial of service attacks. By sending specially crafted IOCTL requests, an attacker can induce crashes in arbitrary processes, leading to potential disruptions in gameplay experiences and system stability.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-61155
Created by pollotherunner

CVE-2025-61155
Created by sys0xFF

References

https://github.com/pollotherunner/CVE-2025-61155/blob/mai...

https://www.hotta.com.tw

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2025
🟡
Public PoC available
Oct 25, 2025
👾
Exploit known to exist
Oct 25, 2025
Vulnerability Reserved
Sep 26, 2025

CVE-2025-61155 Data

JSON