CVE-2024-55413 | THREATINT

Description

A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This can be exploited for privilege escalation, code execution under high privileges, and information disclosure. These signed drivers can also be used to bypass the Microsoft driver-signing policy to deploy malicious code.

PUBLISHED Reserved 2024-12-06 | Published 2025-01-07 | Updated 2025-01-08 | Assigner mitre

References

www.sunix.com/tw/

github.com/...24-55413/CVE-2024-55413_snxppamd.sys_README.md

cve.org (CVE-2024-55413)

nvd.nist.gov (CVE-2024-55413)

Download JSON