CVE-2024-30804

2024-04-2622:15:08

[email protected]

web.nvd.nist.gov

asus

fan_xpert

deviceiocontrol

vulnerability

arbitrary code execution

crafted ioctl requests

nvd

cve-2024-30804

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

An issue discovered in the DeviceIoControl component in ASUS Fan_Xpert before v.10013 allows an attacker to execute arbitrary code via crafted IOCTL requests.

References

github.com/DriverHunter/Win-Driver-EXP/tree/main/CVE-2024-30804