Back

CVE-2024-34332

June 10, 2024, 6:06 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

SiSoftware SANDRA

  • before 31.66

SiSoftware SANDRA

  • v31.66
  • before 15.18.1.1

Source

cve@mitre.org

Tags

cve@mitre.org
2024-06-10
CVE-2024-34332

CVE-2024-34332 details

Published : June 10, 2024, 4:15 p.m.
Last Modified : June 10, 2024, 6:06 p.m.

Description

An issue in SiSoftware SANDRA v31.66 (SANDRA.sys 15.18.1.1) and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://belong2yourself.github.io/vulnerabilities/docs/SANDRA/Elevation-of-Privileges/readme/ cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.