Out-of-Bounds Write Vulnerability in Jungo WinDriver Software
CVE-2024-22104

5.5MEDIUM

Key Information:

Vendor: Jungo
Status: Windriver
Vendor: CVE Published:; 2 July 2024

What is CVE-2024-22104?

An Out-of-Bounds Write vulnerability has been identified in Jungo WinDriver versions prior to 12.5.1. This security flaw allows local attackers to exploit the software, potentially leading to a crash of the Windows operating system, commonly referred to as a blue screen error. The exploitation of this vulnerability can result in a Denial of Service (DoS), disrupting normal system operations and affecting overall system stability. Users of affected WinDriver versions are encouraged to upgrade to the latest release to mitigate this risk.

References

https://jungo.com/windriver/versions/

https://www.mitsubishielectric.com/en/psirt/vulnerability...

https://www.cisa.gov/news-events/ics-advisories/icsa-24-1...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 2, 2024