CVE-2024-33218

2024-05-2215:15:28

[email protected]

web.nvd.nist.gov

asustek computer inc

usb 3.0 boost storage driver

privilege escalation

arbitrary code execution

ioctl requests

7.9 High

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

JSON

An issue in the component AsUpIO64.sys of ASUSTeK Computer Inc ASUS USB 3.0 Boost Storage Driver 5.30.20.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.

References

github.com/DriverHunter/Win-Driver-EXP/tree/main/CVE-2024-33218