Out-of-Bounds Write Vulnerability in Jungo WinDriver for Windows Systems
CVE-2023-51778

5.5MEDIUM

Key Information:

Vendor: Jungo
Status: Windriver
Vendor: CVE Published:; 2 July 2024

What is CVE-2023-51778?

Jungo WinDriver, a software product used for device driver development, is susceptible to an out-of-bounds write vulnerability. This issue allows local attackers to manipulate the software in such a way that it can cause a system-wide Denial of Service (DoS). Specifically, exploitation of this vulnerability can lead to a Windows blue screen error, compromising system stability and functionality. Users are advised to upgrade to version 12.1.0 or later to mitigate risks associated with this vulnerability.

References

https://jungo.com/windriver/versions/

https://www.mitsubishielectric.com/en/psirt/vulnerability...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-1...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 2, 2024
Vulnerability Reserved
Dec 25, 2023