CVE-2024-33226

2024-05-2216:15:10

[email protected]

web.nvd.nist.gov

tbt force power control

access64.sys

escalate privileges

crafted ioctl requests

arbitrary code execution

vulnerability

7.9 High

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

JSON

An issue in the component Access64.sys of Wistron Corporation TBT Force Power Control v1.0.0.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.

References

github.com/DriverHunter/Win-Driver-EXP/tree/main/CVE-2024-33226