CVE-2024-33223

2024-05-2216:15:10

[email protected]

web.nvd.nist.gov

asustek computer

iomap64.sys

asus gpu tweakii

privilege escalation

arbitrary code execution

crafted ioctl requests

security vulnerability

7.9 High

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

JSON

An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.

References

github.com/DriverHunter/Win-Driver-EXP/tree/main/CVE-2024-33223