mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 17:21:36 +00:00
29 lines
1.3 KiB
JSON
29 lines
1.3 KiB
JSON
{
|
|
"id": "CVE-2024-29216",
|
|
"sourceIdentifier": "vultures@jpcert.or.jp",
|
|
"published": "2024-03-25T07:15:50.750",
|
|
"lastModified": "2024-03-25T13:47:14.087",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Exposed IOCTL with insufficient access control issue exists in cg6kwin2k.sys prior to 2.1.7.0. By sending a specific IOCTL request, a user without the administrator privilege may perform I/O to arbitrary hardware port or physical address, resulting in erasing or altering the firmware."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Existe un IOCTL expuesto con un problema de control de acceso insuficiente en cg6kwin2k.sys anterior a 2.1.7.0. Al enviar una solicitud IOCTL espec\u00edfica, un usuario sin privilegios de administrador puede realizar E/S en un puerto de hardware o direcci\u00f3n f\u00edsica arbitraria, lo que resulta en el borrado o alteraci\u00f3n del firmware."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://jvn.jp/en/vu/JVNVU90671953/",
|
|
"source": "vultures@jpcert.or.jp"
|
|
},
|
|
{
|
|
"url": "https://sangomakb.atlassian.net/wiki/spaces/DVC/pages/45351279/Natural+Access+Software+Download",
|
|
"source": "vultures@jpcert.or.jp"
|
|
}
|
|
]
|
|
} |