CVE-2024-39251

2024-07-0119:15:05

[email protected]

web.nvd.nist.gov

thunderobot

control center

information disclosure

code execution

privilege escalation

ioctl requests

7.8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

An issue in the component ControlCenter.sys/ControlCenter64.sys of ThundeRobot Control Center v2.0.0.10 allows attackers to access sensitive information, execute arbitrary code, or escalate privileges via sending crafted IOCTL requests.

References

github.com/Souhardya/Exploit-PoCs/tree/main/ThundeRobot_Control_center