Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-34332

June 10, 2024, 6:06 p.m.

Product(s) Impacted

SiSoftware SANDRA

  • before 31.66

SiSoftware SANDRA

  • v31.66
  • before 15.18.1.1

Description

An issue in SiSoftware SANDRA v31.66 (SANDRA.sys 15.18.1.1) and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API.

Weaknesses

Date

Published: June 10, 2024, 4:15 p.m.

Last Modified: June 10, 2024, 6:06 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References