Out-of-Bounds Write Vulnerability in Jungo WinDriver Software
CVE-2024-22103

5.5MEDIUM

Key Information:

Vendor: Jungo
Status: Windriver
Vendor: CVE Published:; 2 July 2024

What is CVE-2024-22103?

An out-of-bounds write vulnerability has been identified in Jungo WinDriver versions prior to 12.6.0, which could be exploited by local attackers to trigger a Windows blue screen error, leading to a Denial of Service (DoS) situation. This flaw can compromise system stability, making it essential for users and administrators to update to the latest version to mitigate potential risks.

References

https://jungo.com/windriver/versions/

https://www.mitsubishielectric.com/en/psirt/vulnerability...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-1...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 2, 2024